If you’re a Samsung user, you’re probably aware of the annoying bloatware that comes with Samsung devices. With new updates and duplicate apps that literally no one uses, Samsung loves to keep our phones constantly piling up useless software. Although apparently harmless, new reports have surfaced that Samsung’s take on bloatware might actually do more harm than good.
A recent report released by a security researcher – Joao Gouveia of Anubis Labs – claims that Samsung might have ‘left millions of customers exposed to hacking’. This claim came with the fact that an abandoned Samsung app was hijacked and by the researchers themselves. The Samsung app in question is the S Suggest that was once used to suggest popular applications to download and install. Since 2014, the app is no longer functioning and the company casually abandoned it.
However what came after the discontinuation was a result of carelessness by Samsung’s part. The company did not maintain the domain name – ssuggest.com – of the app and once the allotted period of the domain name expired, it was available to use by literally anyone who could hijack it.
Had it been a malicious hacker to hijack the app, the company would be in deep waters right now with millions of devices, who still used the S Suggest app, exposed to hacking. The app permissions include the ability to reboot the phone, as well as install other apps or packages. Fortunately, the discovery of the abandoned domain name was made by security researchers first who have successfully been able to take control of it. “Someone with bad intentions could have grabbed that domain and do nasty things to the phones,” Gouveia said.
Samsung has answered to these claims by saying even if hackers had taken over the domain name, it would have been virtually impossible for them to install viruses or malicious apps on other Samsung devices. Gouveia further clarified that in the 24 hour period that followed after the discovery of the domain, he saw 620 million device check-ins from 2.1 million devices.
What are your thoughts about Samsung leaving its users vulnerable to hacking? Let us know your thoughts in the comment section below!