exploit Samsung Galaxy devices vulnerable to data theft

Thanks to a member of XDA Developers, Android users have a whole different vulnerability to worry about if they happen to be an owner of one of the Samsung Galaxy S lineup of devices; the exploit it gives the bad guys access to the device's physical memory – all of it.

It sure seems that Android has become the new Windows when it comes to exploits and vulnerabilities being announced every day, or at least it seems that way with a new one being announced via a XDA Developer member by the name of alephzain.

He claims that the vulnerability, found in multiple Samsung devices, gives the attacker access to all of the device's physical memory which would then let them either totally wipe the device and brick it or get total access to the user's data.

Alephzain first tested out his discovery on a Samsung Galaxy S III but he says that the flaw can also be found on other Samsung devices like the Galaxy S II, the Galaxy Note II and the Meizu MX. It was also suggested that any Samsung device using the Exynos processor (4210 and 4412) and using the Samsung kernel could be open to the vulnerability.

According to the on-going thread at XDA Developers on the subject, these are some of the Samsung devices open to the attack:

  • Samsung Galaxy S2 GT-I9100
  • Samsung Galaxy S3 GT-I9300
  • Samsung Galaxy S3 LTE GT-I9305
  • Samsung Galaxy Note GT-N7000
  • Samsung Galaxy Note 2 GT-N7100
  • Verizon Galaxy Note 2 SCH-I605 (with locked bootloaders)
  • Samsung Galaxy Note 10.1 GT-N8000
  • Samsung Galaxy Note 10.1 GT-N8010.

The engineers at Samsung have been made aware of the exploit so hopefully there will be a fix for it coming soon.

via The Next Web