Certik Discovers Critical Vulnerability in Solana's Saga Phone, Endangering Digital Assets

Blockchain security firm Certik has discovered a critical vulnerability in Solana's Saga Phone, which endangers digital assets stored on the device, including sensitive cryptocurrency private keys. The vulnerability arises from the phone's security relying solely on its operating system, and the 'bootloader unlock' feature becomes a gateway for attackers to install custom firmware embedded with a root backdoor. More than 2,100 devices are potentially at risk, and the Solana Foundation has not publicly responded to these findings. This revelation significantly affects Solana's ambition of creating a crypto-centric smartphone, and the situation demands immediate attention to rectify the current vulnerability and reassess the overall security framework of the device.