Solana Labs has strongly refuted claims made by blockchain analysis agency CertiK round Saga smartphones being riddled with safety flaws. Solana Labs owns the Saga smartphone model, which is laden with pro-crypto options like in-built digital pockets. In a latest submit on X, CertiK stated that this smartphone from Solana Labs comes with a ‘essential vulnerability’ that can be utilized to put in malicious software program when the bootloader of the cellphone is unlocked. Because of this vulnerability, a cyber hacker may set up a hidden gateway to entry private particulars on a Saga cellphone, in response to CertiK.
In its submit on X, CertiK had warned not solely Solana Labs, however all smartphone making manufacturers concerning the danger of malware being put in by way of the bootloader. The platform shared a minute-long video demonstrating the method of infecting on a Solana Saga smartphone.
Ever questioned concerning the safety of your Web3 units?
Our latest exploration reveals a major bootloader vulnerability within the Solana Phone, a problem not only for this gadget however for the complete trade. Our dedication to enhancing safety requirements is unwavering. :closed_lock_with_key:… pic.twitter.com/lHZ5W7hXzy
— CertiK (@CertiK) November 15, 2023
In a dialog with CoinTelegraph, Solana Labs stated the findings shared by CertiK are ‘inaccurate’. “The CertiK video does not reveal any known vulnerability or security threat to Saga holders. Unlocking the bootloader wipes the device, which users are alerted about multiple times when unlocking the bootloader, so it’s not a process that can take place without users’ active participation or awareness,” CoinTelegraph quoted Solana Labs as saying.
Modern smartphones are geared up with a bootloader that’s locked as a safety measure. A locked bootloader solely masses authorised code, defending customers from abuse. Unlocking the bootloader on a smartphone can introduce a major safety danger — the method of unlocking the bootloader is supported on many Android telephones and doing so fully wipes the information on the smartphone.
The blockchain agency has additional additionally identified that unlocking a bootloader may very well be carried out on a number of Android units citing data from the Android Open-Source Project documentation.
Solana’s Saga smartphone was launched in April 2022 and was touted as the arrival of the world’s first-generation of crypto and Web3-centric smartphones. Running on Android, the Saga smartphone was priced at round $1,000 (roughly Rs. 78,300). Along with a Solana Pay crypto pay, a ‘seed vault’ can be pre-installed on the Saga gadget to securely retailer all of the personal keys linked to the gadget, in response to the corporate.
