A side-channel attack in Qualcomm technology, used by most modern Android devices, could allow an attacker to snatch private keys. As a result of exploiting the flaw, attackers can pluck sensitive data, including private encryption keys, passwords and more, from Qualcomm-powered devices. Up to 36 Qualcomm chipsets are impacted including popular Snapdragon models 820, 835, 845 and 855, which are used by several Android devices in the market. Qualcomm has issued a patch for the flaw (CVE-2018-11976), which was first reported to Qualcomm March 19, 2018.
Source: https://threatpost.com/qualcomm-critical-flaw-private-keys-android/144112/