Samsung Galaxy S7 phones ‘vulnerable to being hacked’

Samsung’s Galaxy S7 smartphones — thousands of which have been sold to Irish customers — contain a microchip security flaw uncovered earlier this year that put tens of millions of devices at risk to hackers looking to spy on their users, researchers have said.

Samsung Galaxy S7 phones ‘vulnerable to being hacked’

Jack Stubbs

Samsung’s Galaxy S7 smartphones — thousands of which have been sold to Irish customers — contain a microchip security flaw uncovered earlier this year that put tens of millions of devices at risk to hackers looking to spy on their users, researchers have said.

The Galaxy 7 and other smartphones made by Samsung Electronics were previously thought to be immune to a security vulnerability known as Meltdown, which researchers said affected most of the world’s PCs, smartphones and other computing devices.

Researchers from Austria’s Graz Technical University told Reuters they have figured out a way to exploit the Meltdown vulnerability to attack Galaxy S7 handsets.

The team, which released its findings at the Black Hat security conference in Las Vegas, is looking into Meltdown’s impact on other makes and models of smartphones and expect to uncover more vulnerable devices in the near future, researcher Michael Schwarz said.

“There are potentially even more phones affected that we don’t know about yet,” he said.

There are potentially hundreds of million of phones out there that are affected by Meltdown and may not be patched because the vendors themselves do not know.

Samsung said it introduced patches in January and July to protect Galaxy S7 handsets against Meltdown.

“Samsung takes security very seriously and our products and services are designed with security as a priority,” the company said.

A Samsung spokeswoman did not comment on how many Galaxy S7 smartphones had been sold.

She said there were no reported cases where Meltdown had been exploited to attack an S7 handset and that no other Samsung phones were known to be vulnerable.

Meltdown, and a second vulnerability known as Spectre, can be exploited to reveal the contents of a computer device’s central processing unit — designed to be a secure inner sanctum.

Hackers can exploit those vulnerabilities by either bypassing hardware barriers or tricking applications into giving up secret information such as passwords or banking details.

There are no known cases of hackers exploiting either vulnerability in a real-world attack, but disclosure of the widespread hardware flaws has rocked the computer industry, forcing chipmakers and device manufacturers to scramble to contain the fallout.

The Galaxy S7 is used by 30 million people, according to research firm Strategy Analytics.

Reuters

more courts articles

Stephen Bear ordered to pay back profits from sharing private sex tape Stephen Bear ordered to pay back profits from sharing private sex tape
Gary Glitter victim seeking six-figure sum in damages, court told Gary Glitter victim seeking six-figure sum in damages, court told
Man (25) in court charged with murdering his father and attempted murder of mother Man (25) in court charged with murdering his father and attempted murder of mother

More in this section

FILE PHOTO The Competition and Consumer Protection Commission has cleared the purchase of Goodbody Stockbrokers by AIB END Goodbody Stockbrokers fined over €1.2m by Central Bank over rules breaches
Nottingham City Centre Stock Irish staff at the Body Shop wait for wages as retailer shuts stores in the Republic
Ryanair comments on Norwegian Ryanair boss O'Leary's spat with Transport Minister over Dublin Airport escalates
IE logo
Devices


UNLIMITED ACCESS TO THE IRISH EXAMINER FOR TEAMS AND ORGANISATIONS
FIND OUT MORE

The Business Hub
Newsletter

News and analysis on business, money and jobs from Munster and beyond by our expert team of business writers.

Sign up
ie logo
Puzzles Logo

Play digital puzzles like crosswords, sudoku and a variety of word games including the popular Word Wheel

Lunchtime News
Newsletter

Keep up with the stories of the day with our lunchtime news wrap.

Sign up
Cookie Policy Privacy Policy Brand Safety FAQ Help Contact Us Terms and Conditions

© Examiner Echo Group Limited