Silent Circle Patches Modem Flaw That Exposes Blackphone to Attack

January 6, 2016

Silent Circle, makers of the security and privacy focused Blackphone, have patched a vulnerability that could allow a malicious mobile application or remote attacker to access the device’s modem and perform any number of actions.

The update was released Dec. 7 in version 1.1.13 RC3; details of the issue were disclosed today by SentinelOne, which discovered the problem in August and coordinated a fix and disclosure through Bugcrowd.

The Blackphone includes encrypted messaging services such as Silent Text and Silent Phone, and is meant to be a deterrent to hackers and surveillance efforts alike.

Read full story…