Samsung to use KNOX to fix SwiftKey vulnerability
posted by Alan F. / Jun 17, 2015, 6:50 PM
SwiftKey, for those unaware, is a third-party QWERTY keyboard app. The vulnerability affects only those Samsung handsets that have the app pre-installed. Samsung says that it is going to use its KNOX secure sandbox to fix the problem. By using KNOX as the conduit for a fix, Samsung can prevent having to send out a firmware update that would have to wait for the carriers to test it.
The bottom line is that thanks to KNOX, this vulnerability will be closed in days instead of weeks or months. And that should make Samsung Galaxy owners feel more secure overall.
source: PocketNow via AndroidGuys
Posts: 1390; Member since: Oct 05, 2014
posted on Jun 17, 2015, 7:08 PM 1
Posts: 1656; Member since: Jun 06, 2010
Sometimes PhoneArena acts like pure uneducated person. Look at this statement - "Over 600 million phones are believed to be at risk. The bad guys can use this opening to grab your GPS coordinates, access the camera and the microphone, install apps without your permission, intercept messages and calls, and steal locally-stored files." Fact is following condition has to be met: - Samsung has already supplied the fix to carriers months ago, so your carrier must be one of those idiots who hasn't yet sent you the update. - You **MUST** be connected to unsecured, unencrypted spoofed network - You must be performing a language pack update over that spoofed unencrypted network at that time That's the fact. So, unless someone is doing all these things at same time, you're safe.
posted on Jun 18, 2015, 2:07 AM 0
Posts: 854; Member since: Apr 22, 2013
Nice. I was wondering what Knox was good for besides being rooted away.
posted on Jun 17, 2015, 7:22 PM 2
Posts: 2; Member since: Jun 17, 2015
So carriers can void your warranty for getting rid of their ad revenue and bloatware
posted on Jun 17, 2015, 8:10 PM 3
Posts: 1459; Member since: Mar 28, 2013
I've pretty much owned most flagship Samsung devices starting from the original galaxy and not one of them had swift key pre-installed.
posted on Jun 17, 2015, 8:43 PM 5
Posts: 1518; Member since: Feb 14, 2015
Another day, Another ripoff, Another Bobbybuster.
posted on Jun 17, 2015, 9:51 PM 1
Another day, Another ripoff, Another butthurt. Accept the facts. Our OS, Android, sucks, when it comes to updates. Not to mention the OEMs that are partnered with Android. Le sigh. Don't worry, time has passed. 1 year, 364 days, 23:30 hours left.
posted on Jun 17, 2015, 10:06 PM 1
Posts: 1117; Member since: Jan 22, 2014
Updates, updates, updates is all I can hear all the time from techie guys. You will have the right time and supported hardware os installed on the phone at buying time. Furthermore will receive one or two major updates. It's enough looking at the speed of hardware advanced. But ... don't stay and steer at "updates", coming or not, and enjoy the phone which you choose.
posted on Jun 18, 2015, 12:42 AM 0
Posts: 854; Member since: Jan 13, 2015
For so long? ROFL
posted on Jun 17, 2015, 9:58 PM 0
Posts: 4; Member since: Jun 18, 2015
All this PA articles are blaming SwiftKey for this problem, however it is Samsung fault: techcrunch[dot]com/2015/06/17/no-its-samsung-not-swiftkey-that-is-to-blame-for-this-keyboard-security-scare/#.5kplgh:kMHY
posted on Jun 18, 2015, 3:35 AM 0
Send a warning to post author
Send a warning to Selected user.
The user has 0 warnings currently.
Next warning will result in ban!
Ban user and delete all posts
Message to PhoneArena moderator (optional):