return icon

Hacker says he successfully broke into security system of BPhone

By exploiting a flaw on BKAV Mobile Security, a hacker has said that he fooled the security system of BPhone to unlock the device.



A hidden hacker recently published on his Blogspot an article on how to hack BPhone. With some technical operations, the man can crack the anti-theft feature on newly launched BPhone models.

According to the hacker, the vulnerability was discovered four years ago but it still can be exploited. To prove his finding, the hacker described in detail the flaw that he discovered.

The man discovered that the security app has the function of sending requests to BKAV’s server to check the status of the device and lock the device if necessary.

According to the hacker, BPhone communicates with a server by sending SMS messages. This is why BPhones are introduced as having anti-theft function even when there is no internet connection.

Communications are conducted every time when BPhone owners turn on the phones or change SIM. A message with encrypted information such as Chip ID, IMEI, etc will be sent to one of the telephone numbers of BKAV.

BKAV’s server, after receiving information, will check if the owners of BPhones report the loss of their devices. If the loss is confirmed, a server will send an SMS message to conduct the operation to lock the devices.

The security hole of BKAV Mobile Security occurs because it doesn’t verify the name of senders. Regardless of the sender, the system will handle messages, no matter who the senders are, if the messages follow the syntax rule.

With some technical operations, the hacker found the message structure (encrypted) that the server sends to the phone.

The hacker said he found the fixed key that BKAV uses to encrypt and decrypt data.

Thanks to finding a security hole that doesn’t verify senders, and finding the fixed key, the hacker can forge SMS messages from the server to phones to unlock devices with any passcode. This is how the hacker neutralized BPhone’s anti-theft feature.

This is the second security accident related to BKAV over the last month. In December 2021, the technology firm ran into trouble when users’ information was leaked, affecting 200 users of BKAV’s products.

BKAV’s representative, who VietNamNet contacted, said the firm still has no official response about the case.

Meanwhile, some experts said that even when scammers fool BKAV Mobile Security with forged messages, they still won’t be able to use the devices. Once the phone has a connection, it will be automatically locked as it receives a command to lock the device sent from the server periodically.

Trong Dat

BKAV introduces low-cost Bphone A40, A50 and A60

BKAV introduces low-cost Bphone A40, A50 and A60

The three products are priced between VND4.5 million and VND6.5 million, affordable for most consumers.


U.S. recommends adding birthplace info to Vietnam’s new passport

The U.S. is still reviewing Vietnam’s new passport and has asked visa applicants to submit their birthplace information.


Vietnam logs 1,815 new coronavirus cases on August 13


Vietnamese firm reaches first partnership deal to develop eSports in Cambodia

Power shortage worries increase hunger for coal

Vietnam is maximising its coal mining output amid widespread power outages in the north.

Indicators ripe for wave of tech startup successes

Venture capital investment flows into Vietnam, particularly from Singapore, are on track to surpass the previous level, propelled by the country’s buoyant tech startup scene.

Tourism industry faces serious labor shortage

Because of low pay, many workers have left the tourism sector.

Industrial parks, economic zones absorb US$ 230 billion in foreign direct investment

Industrial parks (IPs) and economic zones (EZs) across the country have attracted nearly 11,000 foreign direct investment projects worth US$230 billion, according to Deputy Minister of Planning and Investment Tran Quoc Phuong.

Property, fishery sectors face hardship as credit chokes

At a government-to-business conference held yesterday, representatives of business associations expressed their concern over being unable to access bank loans as banks are running out of credit growth quotas.

Utilising every opportunity to grow and overcome challenges

That is the message and guideline of Minister of Planning and Investment Nguyen Chi Dung at the national conference on how to sustainably develop.

Outbound tours to Europe rocked by passport tangle

A number of Vietnamese outbound travel companies have already been affected by the decision of some European nations to not recognise Vietnam’s new passports.

Huynh Nguyen Mai Phuong becomes Miss World Vietnam 2022

Huynh Nguyen Mai Phuong was crowned Miss World Vietnam 2022 after surpassing 36 competitors at the finale held at MerryLand Quy Nhon in the south-central province of Binh Dinh on August 12.

Young people discover the universe via telescopes

Many young people have been spending time and money to buy telescopes and build rooftop observatories to admire the wonders of the universe.

Ample room remains for Vietnam’s exports to EU

There is still a lot of room for Vietnamese goods to expand their presence in the European Union (EU) market, but accessing its retail distribution systems is extremely important, heard a seminar in Ho Chi Minh City on August 11.

Vietnam yet rolls out Covid jabs for under-5s

Vietnam has yet planned to get younger kids aged under five vaccinated against COVID-19, according to the Ministry of Health (MoH).