After Apple and Skype bugs, Samsung bug now fears millions of Android usersJune 18, 2015 19:19
Just days after Apple bug and skype bug feared the mobile users enough, a new Samsung keyboard bug worries millions of android users worldwide.
According to the NowSecure, a loophole in Samung’s Android keyboard installed on over 600m devices is reportedly exposed to hackers and allow them take stock of the smartphone or tablet.
If the Samsung Android device is connected to a malicious Wi-Fi network when the keyboard attempts to update its trending phrases and language pack, a hacker could substitute the update for a backdoor into the phone giving a hacker almost complete access to the phone.
According to NowSecure a hacker could remotely access a smartphone's sensors, such as GPS, the camera or microphone, eavesdrop on calls or attack sensitive personal data.
"Unfortunately, we were only made aware of the issue on Tuesday," said Joe Braid, chief marketing officer of SwiftKey. "We are working as hard as possible to support Samsung and help it fix the issue."
Simply installing another third-party keyboard, including SwiftKey's full keyboard does not fix the issue, as the Samsung keyboard continues to run in the background.
"There isn't a whole lot you can do except try to steer clear of networks you don't trust, where a crook might try to intercept and hack your traffic," said Paul Ducklin from security company Sophos . "The silver lining, if that's not too strong a way to describe it, is that a crook can't exploit this hole just whenever he likes: you have to be on his dodgy network when a [keyboard] update happens, and he has to notice in time to jump in as a man-in-the-middle."
The number of Samsung devices affected is extensive, but includes the latest Samsung Galaxy S models, including the Galaxy S6, S5 and S4.
Samsung has not replied to requests for comment.
Few days a text message has led thousands of Apple devices hang down and restart. Later a Skype bug has sent the mobiles to endless loops.