Samsung readies fix for a security flaw that may have compromised as many as 600 million phones, including the Galaxy. As many 600 million Samsung phones may have a security flaw that could allow hackers to monitor the camera and microphone, read incoming and outgoing text messages, and install malicious apps. Fortunately, Samsung says it will release a fix in a few days. Until then, if you are using a Samsung Galaxy S6, S5 or S4 and probably other Android phones made by the same company, avoid using unsecured Wi-Fi networks, such as the kind you’ll find at a Starbucks or other retail location, until you’ve updated your phone. The fix will be automatically downloaded to your phone if you’ve enabled auto downloading. To ensure your device receives the latest security updates, Samsung says go to Settings > Lock Screen and Security > Other Security Settings > Security policy updates, and make sure the Automatic Updates option is activated. At the same screen, click on “Check for updates” to manually retrieve any new security policy updates. Seen first at Black Hat The exploit was demonstrated Tuesday at the Blackhat security conference in London by Ryan Welton, a researcher with security firm NowSecure. (Ars Technica was the first to report this.) Samsung says there haven’t been any reports thus far of Galaxy devices being compromised and the hack could only occur under a fairly narrow set of conditions. But the potential for a hack is real, the company says. The hole is related to the SwiftKey keyboard, which is installed on millions of Samsung phones, and is a potential threat even if the user has not activated that keyboard. The malicious code checks for new language packs over an unencrypted, plain text connection. Welton says he can spoof a proxy server for the keyboard that allows access to many functions on the smartphone. The security researcher says he has confirmed that the vulnerability is active on the Samsung Galaxy S6 on Verizon and Sprint networks, the Galaxy S5 on T-Mobile, and the Galaxy S4 Mini on AT&T. Whether your Samsung phone is active on one of those networks or not, you should take the steps I’ve mentioned to be sure you’re your device secure. Related content brandpost Sponsored by SAP What goes well with Viña Concha y Toro wines? Meat, fish, poultry, and SAP Viña Concha y Toro, a wine producer that distributes to more than 140 countries worldwide, paired its operation with the SAP Business Technology Platform to enhance its operation and product. By Tom Caldecott, SAP Contributor Dec 04, 2023 4 mins Digital Transformation brandpost Sponsored by Azul How to maximize ROI by choosing the right Java partner for your organization Choosing the right Java provider is a critical decision that can have a significant impact on your organization’s success. By asking the right questions and considering the total cost of ownership, you can ensure that you choose the best Java p By Scott Sellers Dec 04, 2023 5 mins Application Management brandpost Sponsored by DataStax Ask yourself: How can genAI put your content to work? Generative AI applications can readily be built against the documents, emails, meeting transcripts, and other content that knowledge workers produce as a matter of course. By Bryan Kirschner Dec 04, 2023 5 mins Machine Learning Artificial Intelligence feature The CIO’s new role: Orchestrator-in-chief CIOs have unique insight into everything that happens in a company. Some are using that insight to take on a more strategic role. By Minda Zetlin Dec 04, 2023 12 mins CIO C-Suite Business IT Alignment Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe