Android users may be at risk of having their data stolen. According to BBC News, a security flaw was recently discovered on over 900 million Android phones that could potentially allow hackers to get complete access to an Android user’s data.

The bug, deemed as Quadrooter, was discovered by Checkpoint researchers who were running tests on chipsets made by U.S. firm Qualcomm. The processor is found in about 900 million Android phones.

Researchers weren’t able to track evidence of hackers manipulating the software as of yet. However, Michael Shaulov, head of mobility product management at Checkpoint, told BBC News cybertheives could take advantage of the Qualcomm security bugs in the near future.

“I'm pretty sure you will see these vulnerabilities being used in the next three to four months," he said. "It's always a race as to who finds the bug first, whether it's the good guys or the bad."

The problems were found in software that handles graphics and in code that controls the way phones communicate between different servers running inside of a phone.

Shaulov predicted engineers won’t be able to completely reverse the bugs for at least six months, but Qualcomm has reportedly already started to prepare patches for the bugs and has distributed the patches to phone makes and operators. It was unclear how many companies have released the updated software to customers’ phones.

Some of the most popular Android brands are at risk of the security hacks, which would allow someone to gradually take control over a device and give them complete access to a phone’s data. The affected devices include Blackberry Priv, Blackphone 1 and Blackphone 2, Google Nexus 5X, Nexus 6, Nexus 6 P, HTC One, HTC M9, HTC 10, LG G4, LG G5, LG V10, New Moto X by Motorola, OnePlus, OnePlus 2, OnePlus 3, Us versions of the Samsung Galaxy S7 and Samsung S7 Edge and the Sony Xperia Z Ultra.