Odaily Planet Daily News Recently, CertiK discovered a critical bootloader vulnerability in Solana Phone. CertiK testing experts successfully jailbroken the phone in just one minute and looted all its assets in a few steps. The vulnerability stems from an insecure "bootloader unlocking" function. In addition to stealing user assets, it also exposes all personal data stored on the device. More than 2,100 devices have been at serious risk since the beginning of April. Given the complexity of the vulnerability and the need for physical access, CertiK has informed Solana of the vulnerability and publicly released this vulnerability warning to protect Web3 users and prompt them to take effective measures to protect their assets. CertiK released a video analyzing the details of the vulnerability on November 15. They emphasized that the vulnerability is not limited to Solana Phone and recommended that related projects and developers take immediate action to strengthen bootloader protection.