If you’re one of the millions of users of a Samsung Galaxy phone, you might be a potential target for a malicious hacker.
A report released today by NowSecure, a security firm located in Chicago, found that a glitch in Swift, the keyboard software used by default on all Samsung Galaxy devices could allow a remote attacker to compromise your phone.
This particular bug makes the phone vulnerable to what is known as a “man in the middle” attack. The Swift software consistently sends requests to a server, checking for updates. To someone with the right knowhow, though, it’s possible to impersonate Swift’s server and send through software that can be used to gain control of the device.
The main problem with this vulnerability is that there’s no real solution. The Swift keyboard is so integrated into Samsung’s software that it cannot be removed or disabled — even if it is switched out with a different keyboard app. Steering clear of unsecured Wi-Fi networks will make you less likely to be targeted, but it won’t render you invulnerable.
Swift runs with elevated permissions, giving it pretty much free rein around the phone. This means that a hacker that worms his way into it can also access the Galaxy’s microphone and camera, track the user’s location or listen to their calls. They can even install apps.
NowSecure claims to have made Samsung and Google’s Android team aware of this vulnerability in late 2014, and Samsung reportedly has made a patch available to network providers. It’s not clear, though, whether providers have pushed out the patch to users yet. Many networks have a record of being notoriously slow to push through updates and security patches, and NowSecure’s tests found a number of Galaxy phones on different carriers were still vulnerable as of Tuesday.
If you’re of a more technical bent, you may be interested in seeing the details of NowSecure’s report on their blog. If you’re of a less technical bent, you might want to check with your carrier and try to avoid insecure Wi-Fi networks.
The White House on Friday unveiled plans for a new effort to ramp up testing for Covid-19, which experts say is an essential part of limiting the spread of the virus. This chart from Vox gives a sense of just how far the U.S. has to go to catch up to other countries that are dealing with the pandemic, including South Korea, the leading virus screener with 3,692 tests per million people. The U.S., by comparison, has done about 23 tests per million people as of March 12.
The Air Force has scrapped a planned upgrade of its B-2 stealth bomber fleet — even after spending $2 billion on the effort — because defense contractor Northrup Grumman didn’t have the necessary software expertise to complete the project on time and on budget, Bloomberg’s Anthony Capaccio reports, citing the Pentagon’s chief weapons buyer.
Ellen Lord, the undersecretary of defense for acquisition and sustainment, told reporters that the nearly $2 billion that had already been spent on the program wasn’t wasted because “we are still going to get upgraded electronic displays.”
Bernie Sanders wants to eliminate $1.6 trillion in student debt, to be paid for by a tax on financial transactions, but doing so won’t be easy, says Josh Mitchell of The Wall Street Journal.
The main problem for Sanders is that most Americans don’t support the plan, with 57% of respondents in a poll last fall saying they oppose the idea of canceling all student debt. And the politics are particularly thorny for Sanders as he prepares for a likely general election run, Mitchell says: “Among the strongest opponents are groups Democrats hope to peel away from President Trump: Rust Belt voters, independents, whites, men and voters in rural areas.”
That’s how much Michael Bloomberg is spending per day in his pursuit of the Democratic presidential nomination, according to new monthly filings with the Federal Election Commission. “In January alone, Bloomberg dropped more than $220 million on his free-spending presidential campaign,” The Hill says. “That breaks down to about $7.1 million a day, $300,000 an hour or $5,000 per minute.”