New Exploit Leaves Up To 600M Samsung Galaxy Phones Vulnerable To Hack
Condumerist
New Exploit Leaves Up To 600M Samsung Galaxy Phones Vulnerable To Hack
Bad news for up to 600 million Samsung Galaxy phone owners worldwide: a big fat new vulnerability has been found that could let anyone with the inclination to cause trouble into your phone to read your messages, listen to your mic, watch your camera, and push malware at you. Oops.
The exploit is in Samsungs keyboard, Ars Technica reports.
The keyboard is, of course, software and the phones come with a Samsung proprietary version of SwiftKey, the Samsung IME Keyboard, pre-installed. And like any other piece of software on the phone, the keyboard occasionally needs to be updated. So far so good.
So every so often, the phones query a particular server to see if there are updates available for the keyboard or for its language packs. However, any attacker can impersonate the server, sending back not just updates but also malicious code. Which Android, left to its own devices, might be able to catch but Samsung grants their own updates way more privileges than other software might get, and so anything bundled in that keyboard update can just waltz right in and install itself.
The researcher who found the exploit confirmed its presence on Verizon and Sprint Galaxy S6 phones, T-Mobile Galaxy S5 phones, and the Galaxy S4 Mini on AT&T. (That vulnerabilities in other Galaxy models or the same models on other carriers have not been confirmed doesnt mean those phones are in the clear, just that they have not yet been tested one way or the other.) The problem is specific to the Samsung custom version of the app, and not to the SwiftKey app that users (of any phone) can get from Apples App Store or Google Play.
More
http://consumerist.com/2015/06/17/new-exploit-leaves-up-to-600m-samsung-galaxy-phones-vulnerable-to-hack/