Samsung reportedly shipped 100 million smartphones containing botched encryption
FERC Chairman Announces Sitaraman as Deputy Director, Office of Public Participation
February 28, 2022U.S., U.K. Agencies Warn of New Russian Botnet Built from Hacked Firewall Devices
March 1, 2022
Summary:
Samsung reportedly shipped 100 million smartphones containing botched encryption, including models ranging from the 2017 Galaxy S8 to last year’s Galaxy S21. The incident was reportedly by researchers at Tel Aviv University, who confirmed that they found severe cryptographic design flaws that could allow attackers to siphon the devices’ hardware based cryptographic keys. If obtained, the keys unlock troves of critical security data found in smartphones. In addition, cyber attackers could exploit the missteps as they have been addressed in multiple CVEs and use this information to downgrade a device’s security protocols. This would render the phone to be vulnerable to future attacks.
Additional Discussion:
Link:
