Owners of popular Samsung Galaxy devices must make sure that they’ve the very latest version of the Galaxy App Store installed on their phones even in the event that they never use this online marketplace. That is the most recent warning from security experts who discovered a vulnerability inside this application that might allow hackers to put in software onto Samsung’s smartphones without the permission of the users.
This might clearly make it incredibly easy for cyber thieves so as to add software which could then be used to steal personal data similar to user names and passwords.
The threat was discovered by the team at NCC Group who notified Samsung in regards to the vulnerability late last yr.
An update which fixes the glitch has since been pushed out by the Korean technology giant nevertheless it’s now vital that users check their phones and make sure that all the pieces is fully up so far.
“The Galaxy App Store is an alternate application store that comes pre-installed on Samsung Android devices,” NCC Group explained.
“It was found that the Galaxy App Store has an exported activity which doesn’t handle incoming intents in a secure manner. This permits other applications installed on the identical Samsung device to mechanically install any application available on the Galaxy App Store without the user’s knowledge.”
READ MORE: UK broadband users urged to try easy Wi-Fi router trick to get free speed boost
The difficulty affects all phones running Android 12 and older – Android 13-powered devices appear to unaffected even though it’s still smart to examine for any security updates.
Advising users in regards to the glitch and wish to update, NCC Group added: “For Samsung devices running Android 12 or lower, Samsung has released an updated version of the Galaxy App Store (version 220.127.116.11). Users should open the Galaxy App Store on their phone, and if prompted, download and install the most recent version.”
“This issue doesn’t affect devices running Android 13. Users should still update their Galaxy App Store to the most recent version to handle potentially other issues.”
In addition to fixing this app bug, the Galaxy App Store update also eradicates one other problem that allowed hackers so as to add malicious hyperlinks which could then leave Galaxy users who clicked on them open to attack.
This security risk has also now been patched but just once the very latest version of the Galaxy App Store is downloaded.
Samsung has an enormous few weeks ahead with the corporate confirming that it can launch a recent Android device on February 1. Although not confirmed, it seems almost certain that the launch can be all in regards to the Galaxy S23 range which is able to replace the present S22 because the firm’s top-end flagship.
Major hints from the firm suggest this recent breed of phones will feature improved photography and a much fast processor.
Express.co.uk will bring you full details live from next week’s even so watch this space.