Smartphones that use a certain Qualcomm Inc. /zigman2/quotes/206679220/composite QCOM -2.34% chip and run Alphabet Inc.'s /zigman2/quotes/205453964/composite GOOG -0.23% /zigman2/quotes/202490156/composite GOOGL -0.19% Android operating system have hundreds of vulnerabilities that hackers can exploit to spy on users, according to cybersecurity company Check Point Software Technologies on Thursday. The company said it found more than 400 vulnerabilities in Qualcomm's digital signal processor chip that could allow hackers to access video, photos, audio, and microphone data on a target's phone, as well as render the phone inoperable. Check Point said it disclosed the finding to Qualcomm and decided not to publish technical details until mobile vendors had patched the vulnerabilities. "Although Qualcomm has fixed the issue, it's sadly not the end of the story," said Yaniv Balmas, head of cyber research at Check Point. "Hundreds of millions of phones are exposed to this security risk. You can be spied on. You can lose all your data." About 40% of phones on the market, made by Google, Samsung /zigman2/quotes/209800866/delayed KR:005930 -3.41% , LG /zigman2/quotes/209966407/delayed KR:066570 -0.71% , Xiaomi, OnePlus, and other vendors are affected, Check Point said. Check Point released the report in a blog post Thursday ahead of its presentation at DefCon's 2020 online conference. "Regarding the Qualcomm Compute DSP vulnerability disclosed by Check Point, we worked diligently to validate the issue and make appropriate mitigations available to OEMs," a Qualcomm spokesperson told MarketWatch in a statement. "We have no evidence it is currently being exploited," the spokesperson said. "We encourage end users to update their devices as patches become available and to only install applications from trusted locations such as the Google Play Store."