Skip to main content

Project Zero finds large vulnerability involving Broadcom Wi-Fi chips

nexus 5 smartphone
Google’s Project Zero continues to strap on its cape to make the world a safer place for us to use our electronics, this time helping to discover a dangerous flaw in Broadcom Wi-Fi chips. That hardware can be found in a variety of smartphones, including iPhones, Nexus phones, and a variety of Samsung devices.

Project Zero has been helping to rid the world of exploits and security flaws for a few years now, regularly releasing information on these bugs to manufacturers and then giving them a short time period to correct the problem before it’s made public. In this case, the Project Zero researcher and bug discoverer, Gal Beniamini, said that Broadcam had been very “responsive,” helped fix the bug, and explained its problem to manufacturers.

Apple has responded with a security update, fixing up the problem in its 10.3.1 release, though it hasn’t released a comment on the bug. Techcrunch notes that Google has declined to comment on the matter.

It’s good to see speedy responses, though. From the detailed breakdown of the bug, it seems like a nasty one. It uses a series of exploits to breach the Broadcom chip’s security, which can in turn be used to take over the entire device it’s built into. All of that can be achieved wirelessly, with no direct interaction with the handset in question.

Theoretically, anyone on a shared Wi-Fi network, private or public, could compromise a device built with Broadcom’s Wi-Fi system on a chip (SOC).

Fortunately it sounds like Broadcom has been very open to advice on how to improve its security and has now informed Project Zero that newer versions of its Wi-Fi SoC will utilize a memory protection unit and several other hardware security measures. We’re told that these should fix most of the exploit paths used to make this bug viable and Broadcom is also considering implementing “exploit mitigations in future firmware versions,” as well.

Editors' Recommendations

Jon Martindale
Jon Martindale is the Evergreen Coordinator for Computing, overseeing a team of writers addressing all the latest how to…
Wi-Fi 7 officially hits 5Gbps, five times the speed of your current router
A Wi-Fi router with an ethernet cable plugged in.

Intel and Broadcom have collaborated on a Wi-Fi 7 demo ahead of its prospective 2023 certification, according to PC Gamer.

The two companies showcased the upcoming connectivity standards, successfully demonstrating 5Gbps speeds going between an Intel laptop and a Broadcom access point. The speeds are five times faster than Wi-Fi 6 and 2.5 times faster than Wi-Fi 6E. They also have the potential to get even faster as Wi-Fi 7 develops as an ecosystem, the publication added.

Read more
The key to fixing your bad Wi-Fi connection may finally be here
Checking a Wi-Fi router and internet connection on a phone.

If you've ever found yourself frustrated due to poor Wi-Fi signal in certain buildings or rooms, we might have some good news -- a solution might be on the way.

A team of researchers from the Vienna University of Technology (TU Wien) and the University of Rennes found a new way that could help Wi-Fi signals go through walls.

Read more
Intel could give us Wi-Fi 7 devices long before Apple gets around to it
Internals of Surface Laptop Studio.

Wi-Fi 7 may not exist in devices today, but that isn't stopping Intel from forging ahead with it. Intel is planning to introduce Wi-Fi 7 sometime in 2024 just as Apple turns to Wi-Fi 6E for its upcoming devices. Intel will be doubling down on Wi-Fi 7 development efforts over the coming year, according to Eric McLaughlin, Intel's vice-president of wireless solutions.

"We are currently developing Intel's Wi-Fi '802.11be' in order to obtain the 'Wi-Fi Alliance' certification, and it will be installed in PC products such as laptops by 2024," McLaughlin said in a press conference earlier today. "We expect it to appear in major markets in 2025."

Read more