CertiK made a serious statement about a “bootloader vulnerability” in Solana’s Saga smartphone. However, Solana Labs completely rejects these assertions.
According to Solana Labs, there has been video content released by the blockchain security company CertiK. It shares several “untrue” statements about a supposed security risk present in the crypto-ready Saga phone by Solana.
On Nov. 15, CertiK made a statement on X (which used to be Twitter). They claimed that Saga phone had a serious issue called a “bootloader unlock” attack. This means a bad actor could sneak in a secret entrance into the phone.
Ever wondered about the security of your Web3 devices?
Our newest exploration reveals a significant bootloader vulnerability in the Solana Phone, a challenge not just for this device but for the entire industry. Our commitment to enhancing security standards is unwavering. 🔐… pic.twitter.com/lHZ5W7hXzy
— CertiK (@CertiK) November 15, 2023
CertiK also reported that bootloader unlocks could “let a person with the phone in their hands put in custom firmware with a root backdoor.”
“The report from CertiK suggests that sensitive data, such as cryptocurrency private keys, could be at risk,” it stated.
In contrast, a representative from Solana Labs claimed that the findings by CertiK were not true, and the Saga device remained threat-free as per their video proof. They affirmed, “There are no known risks or hazards to the Saga owners disclosed in the CertiK video.”
Solana Saga: Bootloader Risks & Price Plunge
Solana Labs says you need to unlock the bootloader and put in custom firmware. But before that, an infiltrator has to follow various steps. This can only occur after unlocking the gadget with the user’s keycode or fingerprint.
“When you unlock the bootloader, it clears your device. Solana Labs points out that users get several alerts during this process. So, it can’t happen without the user knowing or taking part,”
Moreover, for those who decide to unlock a bootloader on an Android device, numerous warnings regarding the process’ outcomes are in place.
Should these alerts go unnoticed, the gadget and its private keys get cleaned out. The Solana Saga smartphone introduced the in April 2022, costing $1,099. It comes with a Web3-native DApp store, merging crypto apps into tech gadgets.
Related Reading | Ethereum’s Rollups: Gold Standard, Plasma Revisit Needed — Buterin
But, four months on, Solana decided to cut its price to $599 — a move influenced by a drastic fall in sales. A comment from Solana Labs on this topic is yet to be received from CertiK.