600 Mn Samsung Galaxy exposed to hackers because of Malware in built-in keyboard
The Malware was detected last year, but Samsung has been working quietly on the patch and Android Security was also informed about this.
Samsung officially accepted the Malware and said Company is working on the patch.
Samsung Statement on the keyboard issue :
Samsung takes all security threats very seriously. There have been reports that there is vulnerability when keyboard updates are carried out on Galaxy devices. We are aware of this issue and are committed to providing the latest in security on all of our devices.
This vulnerability, as noted by the researchers, requires a very specific set of conditions for a hacker to be able to exploit a device this way. This includes the user and the hacker physically being on the same unprotected network while downloading a language update.
What is the Malware and How it works :
One of the keyboard app version, SwiftKey that comes prepackaged with Samsung’s latest Galaxy smartphones could allow a malicious hacker to remotely execute code on user’s phone even when if they are not using the keyboard app.
If the Samsung Android device is connected to a UNSECURED Wi-Fi network and the keyboard attempts to update trending phrases and language pack, a hacker can substitute the update for a backdoor into the phone giving a hacker almost complete access to the phone like could remotely access a smartphone’s sensors, such as GPS, the camera or microphone, eavesdrop on calls or attack sensitive personal data like Pictures and Messages.
Once Installed, the malware can not be removed or disabled. The vulnerable devices include Samsung Galaxy S6, Galaxy S5, Galaxy S4 and Galaxy S4 mini on major United States carriers, including Verizon, AT&T, Sprint, and T-Mobile.
At present, the best solution is not to log on to unsecured wi-fi networks , till Samsung releases the patch.