Thanks to publicity surrounding a vulnerability found in the way Samsung updates its language packs on the stock keyboard app, powered by SwiftKey, a fix is incoming for those who find tinfoil hats fashionable. As we went over in our exploit breakdown, the chances of becoming a victim to this vulnerability seems extremely low, and as declared by Samsung in a full statement released today, there has been zero cases of this happening among device owners.
In a big blog post, Samsung goes over what happens when devices become at-risk, and as already stated, the vulnerability “requires a very specific set of conditions for a hacker to be able to exploit a device this way.”
To combat any would be hackers, Samsung shall release a security policy update in the next few days that will rollout to all vulnerable devices.
The likelihood of making a successful attack, exploiting this vulnerability is low. There have been no reported customer cases of Galaxy devices being compromised through these keyboard updates. But as the reports indicate, the risk does exist and Samsung will roll out a security policy update in the coming days.
Samsung KNOX has the capability to update the security policies of our devices, over-the-air, to invalidate potential vulnerabilities caused by this issue.
Thank goodness this is over.