Solana argues that an attacker would nonetheless want the permission of the cellphone proprietor to realize entry.
Solana has responded to claims by blockchain safety agency CertiK that there’s a safety menace to its Saga cellphone. In a Wednesday video post on X, CertiK alleged that the holders of the smartphone could also be uncovered to what’s referred to as a “bootloader vulnerability”. In keeping with the agency, this loophole may enable dangerous actors to create some form of backdoor entry to the cellphone.
In a bid to spotlight its discovery, CertiK showcased, by way of a screenshot, what Saga’s display would appear to be after a backdoor set up has been accomplished. The 1-minute video then concluded on the observe that hackers could have full entry to the holder’s telephones and any knowledge that they may have saved therein. This contains entry to their safely saved crypto. In an announcement, CertiK wrote:
“We show that this will compromise essentially the most delicate knowledge saved on the cellphone, together with cryptocurrency personal keys.”
CertiK’s Report on Solana Saga Is Incorrect, Agency Counters
In the meantime, Solana has now reacted to the video, saying that CertiK’s claims are “inaccurate.” In its defence, the Saga cellphone maker says that the video doesn’t precisely present the vulnerability as one thing peculiar to the Saga machine. At greatest, it reveals somebody unlocking the bootloader, in a means that may very well be finished with just about any Android machine, Solana famous.
Moreover, Solana argues that an attacker would nonetheless want the permission of the cellphone proprietor to realize entry. In keeping with Steven Laver, lead software program engineer of cellular at Solana Labs, unlocking the bootloader can solely happen on the behest of the proprietor. The corporate’s response reads:
“Unlocking the bootloader wipes the machine, which customers are alerted about a number of instances when unlocking the bootloader, so it’s not a course of that may happen with out customers’ energetic participation or consciousness.”
Solana released the Saga cellphone in April 2023 in a singular effort to merge Web3.0 with smartphones. In keeping with Laver, the cellphone was primarily designed to permit customers to have “self-custody of their belongings”. Nonetheless, it additionally introduced a extra snug really feel to customers who may now take their belongings with them in every single place they went.
Initially, it had a price ticket of $1,099. Nonetheless, 4 months after the launch, Solana slashed the value by practically half to $599. However whereas that’s widespread apply within the client electronics enterprise, the value lower was extra due to a steep decline in gross sales.
To date although, CertiK’s report has but to negatively influence SOL – the native token of the Solana community. As of publication, CoinMarketCap data even means that it’s up greater than 11% previously 24 hours.
CertiK is but to reply to Solana’s counterclaims as of press time.