Does anyone know where BB10 phones stand on this new security flaw that has been announced in the news?
https://www.theglobeandmail.com/repo...ticle37510138/
Posted via CB10
Printable View
Does anyone know where BB10 phones stand on this new security flaw that has been announced in the news?
https://www.theglobeandmail.com/repo...ticle37510138/
Posted via CB10
We know a number of ARM cortex processors are affected (https://developer.arm.com/support/security-update).
However I know the Z10, Z30, Passport use the Qualcomm Snapdragon Krait architecture (the other BB10 devices may also use this, just didn't check). This could mean those BB10 devices are not affected but I haven't seen any official news from Qualcomm or BlackBerry yet.
They'll be affected because the problem is in the SoC. Other OSs are being updated to try to wall off the problem, but it isn't a "fix", it's a work-around. Every affected CPU (desktop and mobile) will always have the problem, because it's built into the hardware. The software patches are just trying to keep it from being misused. And it's unlikely that BB10 is going to be updated even to work around the issue, given its EOL status.
The affected ARM CPU are listed in https://developer.arm.com/support/security-update
As far as I know the Classics uses ARM Cortex A5 and the Keyone uses ARM Cortex A-53, so it "may" not be affected.
Of course, it's best if BB make a statement about their products.
So to sum it up. BlackBerry 10 phones are no longer one of the most secure phones on the market?
Posted via CB10
If all the phones affected, BB10 retains its relative security. :)
As usual, through obscurity.
Ha, ha!!!! True!
Posted via CB10
True, except for phones who are currently being supported with updates to mitigate the risks of the hardware. Their security will improve. BB10 isn't in that group (but neither are older Android phones, older iPhones, WinPhone other than 10, etc.).
Obviously the "fault" here isn't BB10, it's the hardware, but it means that every BB10 phone is vulnerable to Spectre and always will be. Will anyone bother to try to exploit it? Probably not worth the trouble, but it's possible.
This is one of many reasons why it's a good idea to be on an actively-developed and supported platform (with "active" support being more than paying the power and Internet bill for the BB World servers). In tech, things are always moving forward, and old tech is either constantly updated or it gets left behind.
Come on Troy. You're missing the latest benefit of an EOL OS. It's 100% secure when nonfunctional.
If anything the BB10 browser is probably too antiquated for Spectre-based attacks to work.
Wait... Security through obscurity is REAL???? 😸
You can't have malware steal your password if the login form won't load.
Attachment 433053
Holy cr*p! Now I'll never get rid of my 9900. 😝