banner

The New Stuff

Samsung Gear S3, Tizen, Security Holes, Gear S3
1142 Views

Samsung Gear S3 News: Tizen is said To be riddled with Security Holes


Samsung Gear S3 software, Tizen, is said to be riddled with security holes. Security researcher Amihai Neiderman has found 40 unknown zero day security vulnerabilities in Tizen, the operating system Samsung uses to power its Samsung Gear S3 smartwatch, TVs and many other electronics.

It’s the worst code I’ve ever seen, Neiderman told Motherboard in advance of a talk about his Tizen research at Kaspersky Lab’s Security Analyst Summit.

Samsung Gear S3 Frontier gets an update: Add ‘Jansky Wearable’ Feature

The whole thing you can do wrong there, they do it. You can see that nobody with any considerate of security looked at this code or wrote it. It’s like taking an apprentice and letting him program your software.

All 4o vulnerabilities would supposedly allow hackers to take control of Gear S3 smartwatches such as the Gear S3 and other Tizen-powered Samsung devices remotely.

The worst of them, according to Neiderman, revolved around the Tizen Store, which Samsung uses to push updates to devices and act as an app store.

Because Tizen Store requires the highest user permissions on a device, exploiting its vulnerabilities makes it a juicy target for hackers.

Neiderman was able to exploit a Tizen Store flaw that allowed him to take control of the store prior to its authentication process, enabling him to deliver wicked code to his TV.

While Neiderman focused his research efforts on phones and TVs, Tizen’s vulnerabilities extend to Samsung Gear S3 smartwatches.

The Tizen Store framework is used to allow Gear users to download apps and receive updates for their smartwatch.

Other major flaws include a failure point where Tizen can’t check whether there’s enough storage space to write new data and a lack of SSL encryption when transmitting data.

While Neiderman notes that some of Tizen’s code is from Samsung’s failed Bada operating system, most of the vulnerabilities are from code written in the past two years.

Samsung says it’s “fully committed” to working with Neiderman to fix any vulnerabilities, and Neiderman himself says he’s been in contact with Samsung, sharing “snippets” of the vulnerabilities with the company.

The Tizen Vulnerability news comes on the heels of news that the CIA allegedly hacked Samsung Tv, potentially allowing the government agency to listen in and capture conversations.

While it’s a good thing that Samsung is made aware of these vulnerabilities, so that it can work on fixing them, it’s a bit alarming that its flagship line of smartwatches is vulnerable.

Recently Published

»

Google’s AI is now much better at recognizing songs that are playing

If you are utilize Google Artificial intelligence or ai song to ...

»

Apple Watch Series 4: Here’s Everything It Can Do

Everything that you have to think about new apple watch series 4, ...

»

The Samsung Galaxy Note 9: Best Android Phone

The Samsung galaxy note 9 acceptably is the best android phone. It is ...

»

Latest ios update: How To download and update ios 12

ios 12, the new version of Apple’s latest ios update launched ...

»

The Best Android Games 2018: Free Games Download for Android

Here we discuss about the Best free android games. What’s new in ...

»

Forza Horizon 4 Demo for Xbox One and Windows PC Available for Download Now

Microsoft has announced with a similar fundamental formula for each ...

»

New iphone release: Iphone XS,XS Max, XR at apple Launch Event 2018

Apple has got fantastic new iphone release that apple new iphone XS, ...

»

Call of Duty: Black Ops 4 Blackout Mode Beta PS4

As we know Call of Duty fans, the Black ops 4 are at long last here. ...

»

Logitech Mouse: Logitech Wireless Mouse MX Vertical Review

Logitech Mouse: Logitech Wireless Mouse MX Vertical Review Let’s ...

Shares