Security News > 2020 > August > 'Find My Mobile' Vulnerabilities Exposed Samsung Galaxy Phones to Attacks

'Find My Mobile' Vulnerabilities Exposed Samsung Galaxy Phones to Attacks
2020-08-10 18:53

A series of vulnerabilities affecting Samsung's Find My Mobile could have been chained to perform various types of activities on a compromised smartphone, a researcher from Portugal-based cybersecurity services provider Char49 revealed at the DEF CON conference on Friday.

Find My Mobile is designed to help users find lost Samsung phones.

According to Char49, there were a total of four vulnerabilities in Find My Mobile components and they could have been exploited by a malicious app installed on the targeted device.

Successful exploitation of the vulnerabilities would have allowed a malicious app to perform any action that the Find My Mobile app could perform, including force a factory reset, wipe data, track the device's location in real time, retrieve phone calls and messages, and lock and unlock the phone.

Char49 told SecurityWeek that the vulnerabilities were found more than a year ago, but Samsung only patched them in late October 2019, and the security company wanted to wait for 9 months before making details public.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/y4dlrLSDqLI/find-my-mobile-vulnerabilities-exposed-samsung-galaxy-phones-attacks

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Samsung 1725 182 413 290 88 973