wraggster
October 28th, 2014, 21:47
http://o.aolcdn.com/hss/storage/midas/e54c85ac224cbc8d63b2f45b387e0dcc/200990680/samsung-galaxy-alpha-review-630.jpg (http://www.engadget.com/2014/10/28/samsung-find-my-mobile-exploit/)
If you're using Samsung's Find My Mobile service to keep tabs on your Galaxy phone's (http://www.engadget.com/2014/10/06/samsung-galaxy-alpha-review/)whereabouts, you may want to stop using it for a while. Both NIST and security researcher Mohamed Baset are warning about an exploit (https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8346) that lets evildoers remotely lock, ring or wipe Samsung smartphones. As it turns out, Find My Mobile doesn't validate the lock code information it gets -- an attacker just has to flood the target device with network traffic to get control. Since the locator tool normally turns on when you sign up for a Samsung account, there's a real chance that you're vulnerable.
http://www.engadget.com/2014/10/28/samsung-find-my-mobile-exploit/
If you're using Samsung's Find My Mobile service to keep tabs on your Galaxy phone's (http://www.engadget.com/2014/10/06/samsung-galaxy-alpha-review/)whereabouts, you may want to stop using it for a while. Both NIST and security researcher Mohamed Baset are warning about an exploit (https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8346) that lets evildoers remotely lock, ring or wipe Samsung smartphones. As it turns out, Find My Mobile doesn't validate the lock code information it gets -- an attacker just has to flood the target device with network traffic to get control. Since the locator tool normally turns on when you sign up for a Samsung account, there's a real chance that you're vulnerable.
http://www.engadget.com/2014/10/28/samsung-find-my-mobile-exploit/