Samsung shipped 100 million Galaxy smart phones filled with critical security vulnerabilities

641

Here’s a mobile security alert for all Samsung Galaxy Phone users and it surely needs your attention as it is critical.

As per a study conducted by Tel Aviv University, a wide range of Samsung Smart Phones across multiple generations are being released into the market with a major security flaw and the concern is that vulnerability has been existing since 2017- the year when the Galaxy S8 made its first debut.

As the issue seems to be more technical, it is hard to explain. But sources report that the susceptibility was observed between the period of 2017 and 2021 and is mostly to do with the security and cryptography related actions that help hackers bypass FIDO2 authentication and sniff in critical data such as passwords- much to do with the AES-GCM encryption Keystore environments observed in ARM’s Trust Zone Architecture.

The only good news in this entire story is that the Korean smart phone maker rolled out two updates- one in August and second in October 2021 and its time for those 100m users to set their devices to auto updates.

Other good news about Samsung is that the phone maker has made it official that it will release mobiles with three years of Android OS updates and 5 years of security updates.

On the other hand, Google Pixel will also be offered with 5 years of Android OS update assurance and security patch updates for a 5-year cycle period.

Rest all big companies offering Android OS on their device such as Motorola, Nokia, and Xiaomi, will be offered with a 3 year security update guarantee followed by a free single OS upgrade assurance.

Ad
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display