Phones
Breaking: Severe security flaws found in Samsung Secure Folder, Knox, and DeX allows attackers to access user’s personal data
Like any other smartphone, Samsung devices also come pre-installed with some native applications such as Galaxy Store, Samsung DeX, Notes, Knox security, Secure Folder, and so on. However, these are stock apps, users are not allowed to remove them from the smartphone.
Recently, a mobile security startup has found seven security flaws in Samsung’s pre-installed apps that could allow attackers to access the users’ personal data. According to Oversecured (via TechCrunch), the CVEs were found in several apps and components bundled with Samsung’s Galaxy devices.
Adding to this, the official pointed out that the vulnerabilities could have allowed a malicious app on the Galaxy S10+ to steal the user’s personal data such as photos, videos, contacts, messages, call records, and change setting “without any user consent or notice” by capturing the permissions from Samsung’s stock apps.
Samsung Secure Folder’s flaw could have allowed the theft of data by exploiting a vulnerability in the app as it has a “large set” of rights across the device. Another bug found in Samsung’s Knox security software could have been abused to install other malicious apps. At the same time, a Samsung DeX bug could have been used to scrape data from user notifications from apps, email inboxes, and messages.
Sergey Toshin, founder of Oversecured said, “the vulnerabilities were verified on a Samsung Galaxy S10+ but that all Samsung devices could be potentially affected because the baked-in apps are responsible for system functionality.”
Well, Oversecured published technical details of the vulnerabilities in a blog post and reported the bugs to Samsung. According to Oversecured:
Samsung confirmed the flaws affected “selected” Galaxy devices but would not provide a list of specific devices. “There have been no known reported issues globally and users should be assured that their sensitive information was not at risk,” but provided no evidence for this claim. “We addressed the potential vulnerability by developing and issuing security patches via software update in April and May, 2021 as soon as we identified this issue.”
STAY CONNECTED WITH US:
- Join SammyFans on Telegram
- Like SammyFans.com on Facebook
- Follow SammyFans on Twitter
- Get news in graphics on Instagram
- Get the latest insights through Google News
- Send us tips at – [email protected]
Samsung could unveil the Galaxy A55 5G in March 2024, while its chipset and camera specs are revealed in a new leak. The company is internally testing the device, which is powered by a SoC with model number S5E8845, which is expected to be the Exynos 1480.
According to GalaxyClub, Samsung Galaxy A54 5G’s Exynos 1480 chipset may bring AMD graphics. The Korean tech giant is closely working with AMD to bring its graphics to mid-range Exynos CPUs, which first debuted with Exynos 2200 in 2021.
Last but not least, the report says that the Galaxy A55 5G may feature a 50-megapixel sensor as the primary camera. Specifications of the other two camera and front-facing camera remains a mystery, at the moment. Stay tuned with us, we will keep you updated on the topic.
Follow our socials → Google News, Telegram, X (formerly Twitter), Facebook
Samsung will soon introduce two entry-level smartphones under its Galaxy A portfolio. Ahead of the launch, Google Play Console listed the upcoming Samsung Galaxy A05s, revealing its design (front & back) along with some of its key specs.
According to the info, Samsung Galaxy A05s will sport a screen with 1080×2400 resolution, Android 13 on board, Snapdragon 680 SoC under the hood, and 6GB of RAM. It’s possible that there will be different internal storage variants for consumers.
Follow our socials → Google News, Telegram, X (formerly Twitter), Facebook
Earlier, it was reported that Samsung’s upcoming Galaxy A05s comes with a 6.6-inch display, a 3.5 mm headphone jack, and a 4,000 mAh battery with support for 25W fast wired charging. As it’s an entry-level phone, it has thick bezels and a chin, while keeping the company’s signature design language.
Google Play Console database confirmed that Samsung’s Galaxy S23 FE will be available in two SoC variants. The company is about to introduce a handful of new Fan Edition products including a smartphone, two tablets, and a pair of wireless earbuds.
In a recent development, Samsung’s Galaxy S23 FE surfaced on the Google Play Console database, which not only confirmed that two SoC variants are coming but an image of the phone also got shared. The device will have Exynos 2200 and Snapdragon 8 Gen 1 chips, based on market/region.
Follow our socials → Google News, Telegram, X (formerly Twitter), Facebook
In addition, the S23 Fan Edition will bring 8GB of RAM, well, at least one of its variants will. It’s easily possible this will be the only RAM variant, though. Android 13 is also confirmed, while One UI 5.1 will be included on top of it as well as eligibility of 4 OS plus 5 years of security updates.