Samsung Shipped Over 100 Million Smartphones With A Dangerous Security Flaw

screenrant.com:

Samsung shipped over 100 million smartphones with a dangerous security flaw, a new report has uncovered. The loophole affected several Samsung devices, including flagships going back to the Galaxy S8 series. It's worth noting that Samsung is among the top Android OEMs when it comes to delivering regular security updates. The brand has promised a minimum of four years of security updates for Galaxy devices launched since 2019, from the affordable Galaxy A-series phones to the flagship Galaxy S-series.

Despite Samsung leading the way when it comes to updates, its devices are still exposed to security flaws from time to time. In 2021, a researcher found over a dozen vulnerabilities in Samsung's native apps which allowed hackers to spy on users. One of the flaws would have enabled a hacker to collect user data from notifications, including chat descriptions from WhatsApp and Telegram, as well as notifications from Google Docs, Gmail, and more. Hackers would also be able to copy a user's contacts from the Secure Folder. Samsung patched most of the flaws in the March 2021 security update, while subsequent patches in April and June 2021 completed the fix.

Related: Samsung Knox: How Secure Is Samsung's Security Network

A more recent vulnerability in Samsung phones was discovered by a team of researchers from Tel-Aviv University in Israel (spotted by SamMobile). The report found that several phones in Samsung's flagship Galaxy S8, Galaxy S9, Galaxy S10, Galaxy S20, and Galaxy S21 series were shipped with a major security flaw that would allow hackers to access their passwords. Over 100 million phones with this issue were shipped by Samsung. The weakness was discovered in Samsung's TrustZone OS, which performs security-related