A widely used smartphone chip contains an unfixable vulnerability that allows attackers to gain full control of a device and steal private keys, according to new research from crypto wallet maker Ledger. The company tested the MediaTek Dimensity 7300 chip, also known as MT6878, and gained complete access during the chip’s boot-up process, raising serious security concerns for users who store private keys on their phones.
Ledger reported its security team executing a fault injection attack on the MediaTek Dimensity 7300. They gained total control by using electromagnetic pulses during the chip’s initial boot sequence. The engineers said they bypassed all security measures once the pulses were applied at the right moment, adding that the issue sits inside the silicon itself.
This vulnerability concern cannot be resolved through a software update given it originates in the SoC architecture. As a result, users remain exposed, even after public disclosure. Researchers said the attack succeeded in between 0.1% and 1% of attempts, but the process can be repeated every second, allowing attackers to gain access within minutes.
Ledger emphasized that the attack involves repeatedly booting the device and injecting faults until one attempt works. This consistent repetition creates a practical path to full device takeover. The company further revealed that smartphones store private keys for crypto wallets when users choose software-based self-custody, so, attackers can extract keys during such hardware intrusions.
This threat directly affects phones like the crypto-focused Solana Seeker, which uses the affected MediaTek chip.
Ledger’s report noted a long-standing concern within the crypto community regarding smartphones and computers. Authors noted these devices have never offered the high-grade protection needed for safe self-custody.
They further warned how users can be tricked into installing malware, also noting the exploitation risks from advanced remote allows attackers to access a device without user interaction. Considering these risks, the community created hardware wallets; these separate devices store private keys and reduce exposure to malware or remote intrusion.
Ledger mentioned hardware wallets relying on Secure Elements. These specialized chips undergo rigorous testing processes similar to those used in payment cards. Secure Elements are designed to withstand advanced physical attacks when properly integrated. The report also stated that this approach has gained wide acceptance across the industry.
Researchers added that the correct use of secure elements still involves nuances. While Ledger’s internal Donjon team continues to research hardware attack threats to improve wallet safety, the company stated that the MediaTek chip lacks such hardened protection. Thus, users depending on phones for self-custody remain at ongoing risk.
Also Read: Solana vs Bitcoin: Why SOL Dropped Sharper and Will It Hit $100?
MediaTek addressed this stance, explaining that electromagnetic fault injection attacks do not fall within the MT6878 chip’s security scope. The company notified the chip’s development is for consumer products and not financial applications.
MediaTek further added that the chip is not designed to resist EMFI attacks. Products that need higher protection, such as hardware wallets, must use components designed for such threats.
The Ledger researchers began their work in February, successfully exploiting the flaw in early May. Then, they disclosed the vulnerability to MediaTek’s security team, informing all affected vendors soon after the disclosure.
This discovery raises a crucial question: How safe are private keys when users store them on general-purpose smartphones rather than secure hardware wallets?
Ledger’s findings pointed out the permanent hardware flaw in the MediaTek Dimensity 7300 chip that enables EMFI attacks to gain full control of a smartphone, allowing extraction of private keys. The report reinforces a need for users to shift sensitive crypto storage toward hardened hardware wallet security.