Samsung Knox security software is continuously gaining popularity among the corporate businesses. And while the US Department of Defense was considering using the Knox-protected Galaxy S4 for its staff, cyber security researchers at Ben Gurion University of the Negev in Israel discovered a serious vulnerability.
According to the researchers the issue not only exposes critical email and communication data, but also allows hackers to insert malicious code through using it. Samsung immediately denied all possible vulnerabilities, but launched investigation anyway.
The investigation is now over and Samsung says it was able to verify the exploit and has intercepted critical data. As it turns out though this is not a flaw in the Knox software, but a classic Men in the Middle attack, possible due to user's omission while configuring the Knox security feature.
Here's Samsung's official description of the problem plus some tips how to avoid it. Samsung will be sending messages to the Knox users with these tips too.
Samsung responds to Knox vulnerability allegations - GSMArena.com news
According to the researchers the issue not only exposes critical email and communication data, but also allows hackers to insert malicious code through using it. Samsung immediately denied all possible vulnerabilities, but launched investigation anyway.
The investigation is now over and Samsung says it was able to verify the exploit and has intercepted critical data. As it turns out though this is not a flaw in the Knox software, but a classic Men in the Middle attack, possible due to user's omission while configuring the Knox security feature.
Here's Samsung's official description of the problem plus some tips how to avoid it. Samsung will be sending messages to the Knox users with these tips too.
Samsung responds to Knox vulnerability allegations - GSMArena.com news