Smartphone bootloader firmware should be secured even if the operating system is compromised. But researchers have discovered five flaws in major chipset vendors' code that make the process out on a limb. A group of researchers from the University of Carolina, Santa Barbara, built a tool called BootStomp which automatically detects security flaws in bootloaders that load the OS kernel when the device is on. After analyzing code from four large chipset makers such as Qualcomm,…
20