http://m.news4jax.com/money/600-million-samsung-galaxy-phones-exposed-to-hackers/33631508
Wasn't sure where to put this. Sounds like it could be bad but unlikely it could happen to you and that you have to be at the wrong place at the wrong time.
Sent from my SM-G920V using XDA Free mobile app
Little chance of that happening really. Lots of discussion threads about it.
Already a patch being sent put by Samsung for the s6. I read its a security certificate Update.
Sent from my Verizon Galaxy S6
Moral of the story as I understand it is that for the attack to be performed, the attacker has to be on the same network as you, so to ensure your safety, you should just avoid wifi networks you don't trust until a fix is released. What I did after reading this technical blog on the issue was add skslm.swiftkey.net to my hosts file, I think that should work too.
Really...come on. People on xda who get caught in this deserve to have their phones taken from them.
Sent from my SM-G920V using Tapatalk
Related
Just thought some people not following their twitter might want to know:
@SamsungFirmware: BAD NEWS MAYBE WE HAVE TO CLOSE OUR WEBSITE! BECAUSE COPYRIGHT! We are checking it out.
This was posted an hour ago
UPDATE:
@SamsungFirmware: We missed a Disclaimer about our website.. We fix it all tonight and hope we keep running!
UPDATE:
Updates from their twitter:
@SamsungFirmware: Samsung wants my domain... Because of the name. samsung-firmware.com is already down they have the same problem.
@SamsungFirmware: We are busy with a new domain so site could be offline soon again YEAH
@SamFirmware: Site DOWN Why because we change it to www.SamFirmware.webs.com Later we go to www.SamFirmware.com
In the last post you can see they changed their twitter name
Sent from my SAMSUNG-SGH-I897 using XDA App
ronandi said:
Just thought some people not following their twitter might want to know:
@SamsungFirmware: BAD NEWS MAYBE WE HAVE TO CLOSE OUR WEBSITE! BECAUSE COPYRIGHT! We are checking it out.
This was posted an hour ago
Sent from my SAMSUNG-SGH-I897 using XDA App
Click to expand...
Click to collapse
this is bad news indeed!
Looks like they have to go... underground
Quick everyone, Start downloading and archiving it all before it is too late!
ronandi said:
Just thought some people not following their twitter might want to know:
@SamsungFirmware: BAD NEWS MAYBE WE HAVE TO CLOSE OUR WEBSITE! BECAUSE COPYRIGHT! We are checking it out.
This was posted an hour ago
Sent from my SAMSUNG-SGH-I897 using XDA App
Click to expand...
Click to collapse
Not sure how its a copy writing issue, they aren't making any money off samsungs property (roms). They aren't editing them and releasing them as a samsung property....should be interesting.
Sent from my GT-I9000 using Tapatalk
Clienterror said:
Not sure how its a copy writing issue, they aren't making any money off samsungs property (roms). They aren't editing them and releasing them as a samsung property....should be interesting.
Sent from my GT-I9000 using Tapatalk
Click to expand...
Click to collapse
I've asked if they can provide any more details at this time. Will post if I find out more.
Sent from my SAMSUNG-SGH-I897 using XDA App
You don't have to do anything wrong to get a letter from a company lawyer. If some exec gets a bug up his butt and sics his legal department on you, right and wrong have nothing to do with it.
dc41 said:
You don't have to do anything wrong to get a letter from a company lawyer. If some exec gets a bug up his butt and sics his legal department on you, right and wrong have nothing to do with it.
Click to expand...
Click to collapse
That's true. But out of curiosity I've been looking up forms of copy write laws, and they all basically deal with either taking someone's work and putting your name on it exclusively, or selling it or both, or a combination of the two. Besides that the rest applies to copying music which is obviously considered illegal but that is still kind of a gray area. And of course copying games and programs.....but that's targeted towards paid games/apps. So as far as "Copy write infringement" by definition it holds no water. Then again if someone can sue NC Soft for making Linage II too addicting and actually successfully start a lawsuit anything could happen rofl.
I can see why they would get in copyright hot water over what they do. All the work that they host is technically property of Samsung and their partners after all. I would hate for them to be killed off, as their releases have helped us a lot. Samsung should think twice about this though, because I bet without the glimmer of hope shown by the GPS improvements in JH2, there would have been a lot more returns Samsung would be dealing with.
New update from their twitter:
@SamsungFirmware: We missed a Disclaimer about our website.. We fix it all tonight and hope we keep running!
Sent from my SAMSUNG-SGH-I897 using XDA App
Well, either they've taken it down for updating, or it's down completely, either way I can't get to it right now.
From facebook:
Samsung-Firmware Webs SITE IS DOWN. WE HAVE TROUBLE WITH SAMSUNG. WE ARE WORKING ON NEW DOMAIN,
way to have your **** together... >.<
It figures, the day that I decide I'm going to update. Hope they can get it back up soon.
Updates from their twitter:
@SamsungFirmware: Samsung wants my domain... Because of the name. samsung-firmware.com is already down they have the same problem.
@SamsungFirmware: We are busy with a new domain so site could be offline soon again YEAH
@SamFirmware: Site DOWN Why because we change it to www.SamFirmware.webs.com Later we go to www.SamFirmware.com
In the last post you can see they changed their twitter name as well
Sent from my SAMSUNG-SGH-I897 using XDA App
rajendra82 said:
I can see why they would get in copyright hot water over what they do. All the work that they host is technically property of Samsung and their partners after all. I would hate for them to be killed off, as their releases have helped us a lot. Samsung should think twice about this though, because I bet without the glimmer of hope shown by the GPS improvements in JH2, there would have been a lot more returns Samsung would be dealing with.
Click to expand...
Click to collapse
So if they are getting in trouble due to basically posting roms from samsung and nothing else what do you call it when people modify their original code to make custom roms? Are they going to jail because not only are they posting samsung property their modifying without samsungs permission.
This is probably a trademark issue, since their domain included Samsung in its name. If it was a copyright issue, they couldn't just change the domain name and continue operating.
Sent from my Nexus One using XDA App
Clienterror said:
So if they are getting in trouble due to basically posting roms from samsung and nothing else what do you call it when people modify their original code to make custom roms? Are they going to jail because not only are they posting samsung property their modifying without samsungs permission.
Click to expand...
Click to collapse
Dont forget that what xda does is illegal too, but its been tolerated by the companies so far because of the positive effects xda has on the popularity of the smartphones from these companies.
I dont think that samsung has a problem with what these website does, but purely of the use of her brandname. For example: the first time i heard of samsung-firmwares i thought it was something official by samsung. After visiting xda i learned it was not.
So the reason is just that samsung doesnt want to be associated with this website, because of the experimental stuff. You will get lot of stupid people complaining to samsung about broken smartphones.
Any suggestions on how to keep our mobile phones safe from intrusions like Dreamdroid, etc.?
Sent from my SCH-I500
Onebryteday said:
Any suggestions on how to keep our mobile phones safe from intrusions like Dreamdroid, etc.?
Sent from my SCH-I500
Click to expand...
Click to collapse
Search for lookout in the market. It scans apps for viruses in every app and they have a separate app that can remove dreamdroid if you get infected somehow.
Sent from my MIUI SCH-i500
Only true way to stay secure is use common sense when downloading. Security software only gives users a fale sense of security. Look at what the app you download accesses and decide yourself on if you feel its safe or not.
Sent from my SCH-I500 using XDA Premium App
I'm going to have to disagree on that.
Disagree as you please. You guys find ways around these phones right? What makes you think there isn't a way around security apps. I know a computer is differ but send me any virus your anti virus software can detect and I can bypass it with the same exact virus. So I'm sure someone could do the same on a phone. Id like to see more people discuss this topic, then I'm sure we could come up with more ideas and ways to protect a phone.
Sent from my SCH-I500 using XDA Premium App
I appreciate the feedback. I would rather be proactive than reactive. Realizing nothing is 100%. Being secure is an on-going endeavour.
Thanks!
Sent from my SCH-I500
im.matt said:
Disagree as you please. You guys find ways around these phones right? What makes you think there isn't a way around security apps. I know a computer is differ but send me any virus your anti virus software can detect and I can bypass it with the same exact virus. So I'm sure someone could do the same on a phone. Id like to see more people discuss this topic, then I'm sure we could come up with more ideas and ways to protect a phone.
Sent from my SCH-I500 using XDA Premium App
Click to expand...
Click to collapse
Far be it for me to put words in add's mouth (or anything for that matter, he bites! LOL), but I suspect what he's getting at is that, as Onebryteday has inferred, the only phone that is 100% secure is the phone that does not exist. That's essentially true for any device that needs securing in one form or another. I agree with what add is saying should that be the case.
It's foolish to depend solely on anti-virus software, yes, but only in that it is foolish to depend solely on *any* one single method. It is therefore equally foolish to completely ignore it on the assumption that anti-virus will be bypassed. It's just one layer of security you can apply, and shouldn't just be wholly ignored because it is not 100% secure.
The more correct way to say it is that it can be bypassed--whether it actually will or not depends on the virus you might pick up, the strength of the anti-virus you're running, how often it's updated, your own app installation choices, browser behavior, etc.
We're kinda bumping into extremes of a continuum here. Don't just ignore anti-virus solutions completely. Don't rely solely on them either. The more different and overlapping security measures you can take---both with software solutions, and simply by being educated about security compromises and proper security behavior---the better off you are.
TY sir! Well stated.
Sent from my SCH-I500
That should be a sticky. I didn't mean to sound like an aver isn't any good, it just isn't enough. I would like to know more about the Android OS and possibly have a topic for security on our phones. The more people who can help prevent intrusions the harder it will be for malware makers to stay undetectable.
Sent from my SCH-I500 using XDA Premium App
I really don't think its much to be concerned about (for the moment at least).
hello!
we all make a great community. many of whom will you be unhappy with Samsung's initiative to use the consequences KNOX we already know ..
if we want to be prisoners, we bought the iphone ...
so.. this is the idea:
SAMSUNG: Remove the Knox system. On recently in new Software Updates.
http://goo.gl/kbIAyj
link original: http://www.htcmania.com/showthread.php?t=690492
Won't happen the rreason is good why the use it. For safety
However it's not liked for developers
Sent from my GT-I9505 using Tapatalk 4
Neahhhh.... We are too small for this big game is up to us to find a solution
Sent from my GT-I9100 using xda app-developers app
excellent idea; I will be joining the effort .
Sent from my GT-I9505
+1 We have to share this petition and publish in different media, forums, blogs etc... By the way signing and moving wont stop some people to find a B plan or solution without the help of Samsung.
Im seriously thinking of changing my s4 to a nexus 5... If we wanted propietary software wed have bought a nice iphone
Hate to say this but this petition thing will never work. Sorry but spinky360 was right.
If you really wanted freedom from locked bootloaders and all that, buy a nexus. That's just how it is.
I wish you luck. You're gonna need it
Sent from my GT-I9505 using Tapatalk 4
chickentuna said:
Hate to say this but this petition thing will never work. Sorry but spinky360 was right.
If you really wanted freedom from locked bootloaders and all that, buy a nexus. That's just how it is.
I wish you luck. You're gonna need it
Sent from my GT-I9505 using Tapatalk 4
Click to expand...
Click to collapse
Would have bought Nexus if, 1) Samsung had been straight with its end users at the time of purchase and 2) seeing as Kitkat update to S4 will also region lock the device =(
I am now rocking an HTC one. I like it.
chickentuna said:
Hate to say this but this petition thing will never work. Sorry but spinky360 was right.
If you really wanted freedom from locked bootloaders and all that, buy a nexus. That's just how it is.
I wish you luck. You're gonna need it
Sent from my GT-I9505 using Tapatalk 4
Click to expand...
Click to collapse
Well I don’t agree that we cannot make a change. If you read a book like The Tipping Point: How Little Things Can Make a Big Difference , you will come to see that even though Samsung spend around 4 billion $ for marketing , the final say is in the hand of the consumers . Currently if you look around the s4 forum, the note 3 forum, and other forums around of the web you will see that people are unsatisfied with what Samsung is doing, and they are advising people away from Samsung.
For one, I know that I can directly influence 50 of my friends and I made sure to contact each and every one of them about Samsung new policies and advised them against any future purchase of a Samsung device. I also contacted some blogs explaining the issues that we have with Samsung - I have yet to hear a word from them - so even though Samsung can pay its way around the web to silence some critiques , it cannot affect the social binding , and the negative social vibe generated around its products . So let’s wait and see if Samsung will stay arrogant and fall like blackberry, nokia , palm … and any other too big for consumer company did , or whether they are going to start making some changes .
63or63 said:
hello!
we all make a great community. many of whom will you be unhappy with Samsung's initiative to use the consequences KNOX we already know ..
if we want to be prisoners, we bought the iphone ...
so.. this is the idea:
SAMSUNG: Remove the Knox system. On recently in new Software Updates.
http://goo.gl/kbIAyj
link original: http://www.htcmania.com/showthread.php?t=690492
Click to expand...
Click to collapse
Pointless. Millions of phones are sold and only a hand full of rooters.
chickentuna said:
Hate to say this but this petition thing will never work. Sorry but spinky360 was right.
If you really wanted freedom from locked bootloaders and all that, buy a nexus. That's just how it is.
I wish you luck. You're gonna need it
Sent from my GT-I9505 using Tapatalk 4
Click to expand...
Click to collapse
man!
I buy a samsung galaxy from the first that came out! always done with what I please! ROM metia you were pre-beta just to try!
with this, we put a barrier samsung and limits us to do what they want!
where it stayed that have Android to be free?
you say you buy a Nexus if I do not go through what we are subjected samsung .. do not you think you're thinking the wrong way? you are undergoing something you limited without any claim?
rings at David vs. Goliath, but at least you will know that there are a handful of unhappy with this new security policy, which on one hand is very good, but on the other, baaaaaaad!
we know that many end users do not even know it's a ROM, let alone answer if you have rooteado or not .. but we are the damned geeks what we like tinkering with what we buy ..
that's the point. perhaps not even make this request out of the desk, but at least we did not stay silent.
For one, the English version of the petition is rather unreadable due to poor punctuation and grammatical errors.
But the real problem is that KNOX itself isn't the problem but how Samsung has decided to inform the companies that handle the warranty repairs. Their line is simply "if there are any 0x1 flags then no warranty". The KNOX flag itself should only mean one thing: that the device was tampered with and its security compromised (important information for corporate IT departments) but it should have no bearing to hardware repairs as these are two separate things.
Done
Enviado do meu GT-I9505 utilizando Tapatalk 4
I think this "petition" threads should be closed and deleted on XDA ... it obviously never changed anything. I signed so many and it never helped (last one was "HTC One X S-Off petition"). I dont think Samsung nor HTC gives a **** about flasher and custom ROM users like us. They need us just for beta testing when they throw us some "leaks" (like a bone to a dog).
This was posted in another thread but I don't think many people saw it because it didn't have its own thread and a lot of people asked for it to have its own thread. It's been a while and no one else went ahead to make a new thread so I thought I might as well do it.
Here's the link below. Go to it and sign the petition, share with friends and family and all that etc etc.
https://www.change.org/p/federal-co...-circumventing-security-ver?just_created=true
It's pretty unlikely that this will make a difference as they've been doing this for a while with no penalty but its worth a shot. If enough people sign it we could at least get some attention towards this. So for the love of Android (and our hate for Verizon) take a minute and sign this and get as many people to sign it as possible even if your not a Verizon s6 user help some fellow Android users out.
Sent from my SM-G920V using XDA Free mobile app
I'm glad you made a new thread for this. It definitely needs as much attention as it can get.
Instead of creating a petition, wouldnt be better submit a formal complaint with the FCC ? Sorry if this questions has been asked before.
Sent from my Nexus 9 using XDA Free mobile app
Jalh said:
Instead of creating a petition, wouldnt be better submit a formal complaint with the FCC ? Sorry if this questions has been asked before.
Sent from my Nexus 9 using XDA Free mobile app
Click to expand...
Click to collapse
That sounds like it would be a good idea. Do you know how to do that? The nice thing about change.org is it gets a bunch of people to sign it and back you so there's a greater chance of it being heard. But it there's a way to make a direct complaint that could be better though they may just ignore it.
Sent from my SM-G920V using Tapatalk
Unfortunately I have never submitted a complaint so I dont know the process. This is all i could found : https://consumercomplaints.fcc.gov/hc/en-us
I recently received an iPhone from work which apparently is the new corporate standard.
Being an xda member I won't use it.
Problem is my carrier has this corporate portal that shows my phone model and I'm concerned I will be asked to use an iPhone.
Is there any way to show my carrier I'm using am iPhone rather than android?
xd4d3v said:
I recently received an iPhone from work which apparently is the new corporate standard.
Being an xda member I won't use it.
Problem is my carrier has this corporate portal that shows my phone model and I'm concerned I will be asked to use an iPhone.
Is there any way to show my carrier I'm using am iPhone rather than android?
Click to expand...
Click to collapse
Probably not without doing things that XDA considers against the rules or even illegal, but it will depend on what method/tool your carrier is using to determine which device you are using.
Sent from my LGL84VL using Tapatalk
Droidriven said:
Probably not without doing things that XDA considers against the rules or even illegal, but it will depend on what method/tool your carrier is using to determine which device you are using.
Sent from my LGL84VL using Tapatalk
Click to expand...
Click to collapse
None of this is illegal though.
It's probably either editing build.prop, xposed or magisk, none of that which is illegal or against the rules.
xd4d3v said:
None of this is illegal though.
It's probably either editing build.prop, xposed or magisk, none of that which is illegal or against the rules.
Click to expand...
Click to collapse
That is IF that is all the carrier is referencing.....hence, "it depends on what your carrier is referencing"
But, since it is the carrier, they might be checking the IMEI, and tampering with that IS against XDA rules, not to mention, illegal in a lot of places.
Also, there are differences in iPhone vs android, in this case, how android tells the network what it is and what the network references might be different than what and how iPhone does it.
Sent from my LGL84VL using Tapatalk
Droidriven said:
That is IF that is all the carrier is referencing.....hence, "it depends on what your carrier is referencing"
But, since it is the carrier, they might be checking the IMEI, and tampering with that IS against XDA rules, not to mention, illegal in a lot of places.
Also, there are differences in iPhone vs android, in this case, how android tells the network what it is and what the network references might be different than what and how iPhone does it.
Sent from my LGL84VL using Tapatalk
Click to expand...
Click to collapse
good call, didn't think of that
xd4d3v said:
good call, didn't think of that
Click to expand...
Click to collapse
Don't get me wrong, it's worth investigating if it ends up being something minor that you can alter. It would require investigating exactly how the carrier does actually identify the device being used. If you know that, you can figure out how to counter it.
Sent from my LGL84VL using Tapatalk