Technology Club

Samsung ‘Find My Mobile’ Exploit Allegedly Lets Attackers Remotely Lock Your Phone

samsung_find_my_mobileAn Egyptian security researcher has allegedly found a vulnerability in Samsung’s Find My Mobile service that enables unauthorised individuals to send remote lock, unlock, and ring commands to Samsung devices that support the service.

Also reported by the National Institute of Standards and Technology (NIST) in the US on its National Vulnerability Database (NVD), the Find My Mobile vulnerability has been given a high-severity rating at 7.8, with an exploitability sub-score of 10.0, due to its network exploitable nature, low access complexity, no authentication requirement, and disruption potential.

The NIST vulnerability summary states, “The Remote Controls feature on Samsung mobile devices does not validate the source of lock-code data received over a network, which makes it easier for remote attackers to cause a denial of service (screen locking with an arbitrary code) by triggering unexpected Find My…

View original post 178 more words

Advertisements