One of the scenarios that smartphone manufacturers probably dread the most is security vulnerabilities. These endless vulnerabilities not only harm the brand value but also pose risks to consumers. Unfortunately, Samsung has been struggling with these issues for almost two years. The company realized that security vulnerabilities it thought were closed were being exploited by someone else. Here are the details…
Major security vulnerabilities threatening Samsung devices!
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) examined software flaws in several Samsung mobile devices. Based on their investigation, CISA warned the brand that some minor vulnerabilities in the devices were being exploited by a spyware vendor. It’s crucial to pay attention to the term “spyware vendor.” While CISA didn’t provide specific details on this aspect, they reported that the vulnerabilities were being monetized, filling someone’s pockets.
Recently, the agency itself added eight security vulnerabilities to its published catalog of Known and Exploited Security Vulnerabilities, six of which are specific to Samsung devices. This means that millions of Samsung users are at significant risk in terms of both their data and the privacy of their personal lives.
A significant portion of the six security vulnerabilities attributed to the Samsung brand in the catalog had apparently been patched by Samsung in 2021. However, the situation is not exactly as it seemed. It can be said that someone left the doors slightly ajar by inserting their foot in the door before the vulnerabilities were closed.
Previously noticed by Google!
According to statements from Google, they had noticed this situation back in 2021. In fact, the evidence that emerged revealed that Google had also discovered this in October 2022. It appears that both Google and CISA are tracing the tracks of the same hackers. So far, there has been no statement from the Samsung side regarding the matter.