Many peoples in the world may be using smartphones or tablets from SAMSUNG, but what you know if in Samsung Galaxy Devices such as : Nexus S, Galaxy S, Galaxy S2, Galaxy Note, Galaxy Note 2, Galaxy Tab 2, and Galaxy S3 have trouble. The Researcher of SAMSUNG's IPC Protocol found a backdoor virus run in background Galaxy Devices.
Paul Kocialkowski from Replicant OS has uncovered a backdoor pre-installed on Samsung Galaxy devices and Nexus S, because that can allows hackers remote access to all the data in the device.
"Replicant OS is an open source operating system based on the Android mobile platform, which aims to replace all proprietary Android components with their free software counterparts."
RFS Commands, that allows bound the communications processor, and hackers to remotely write, read, and delete files on phone storage.
"The spying can involve activating the device's microphone, but it could also use the precise GPS location of the device and access the camera, as well as the user data stored on the phone. Moreover, modems are connected most of the time to the operator's network, making the backdoor nearly always accessible."
"It is possible to build a device that isolates the modem from the rest of the phone, so it can't mess with the main processor or access other components such as the camera or the GPS."
RFS message to Samsung's IPC Protocol
"The incriminated RFS messages of the Samsung IPC protocol were not found to have any particular legitimacy nor relevant use-case. However, it is possible that these were added for legitimate purposes, without the intent of doing harm by providing a backdoor." he said.
"However, some RFS messages of the Samsung IPC protocol are legitimate (IPC_RFS_NV_READ_ITEM and IPC_RFS_NV_WRITE_ITEM) as they target a very precise file, known as the modem's NV data." he added.
This threat is seriously damage, but Replicant team has published a security patch too for your Samsung Galaxy devices.
THANKS, THN
0 comments:
Post a Comment