A built-in vulnerability has been discovered in Russian push-button phones of the Digma brand. It allows you to control your phone via the Internet: send and receive messages remotely, transfer data to third-party servers, register messenger accounts using your phone number, etc., Kommersant found out.
Subscribe to RB.RU on Telegram
Analysis of the device’s firmware showed the presence of infection. The phone contacted the server, reporting IMEI, SIM card ID, etc. In response, the server sent a specific command to the device. Sent and received messages are not saved in the device’s memory.
The company itself stated that there were “anomalies” in the firmware. However, Digma does not confirm the presence of the vulnerability. A copy of the correspondence is available to Kommersant.
Fplus said the vulnerability in mobile phones may be caused by the vendor that develops the software for the phones. Other manufacturers have also encountered this problem, not only in push-button phones, but also in smartphones and tablets.
Digma push-button phones currently occupy 5.9% of the market. According to open data, the country of origin of most push-button models is China. On the markets, their average cost is 1.5 thousand rubles.
Author:
Karina Pardaeva
Source: RB
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
Join our expert trading community and receive premium signals directly to your inbox. Maximize your profits with every trade!
