Update Samsung has admitted that what it calls a “small number” of users could indeed read other people’s personal data following last week’s unexplained Find my Mobile notification.
Many Register readers have written to tell us that after the mystery notification last Thursday, they found the personal data of strangers presented to them.
Many readers, assuming that Samsung has been hacked, have logged into their website to change their passwords. Now the company has admitted that a data security breach has occurred.
A spokesperson said The register: “A technical error prevented a small number of users from accessing the details of another user. As soon as we became aware of the incident, we removed the possibility of logging into the store on our website. until the problem is resolved. fixed. “
She added, “We will contact those affected by the problem with more details.”
Significant number of emails El Reg received about the snafu website, it remains to be seen whether Samsung’s definition of “small number” is the same as that of the rest of the world.
The 1/1 mystery push notification from Find my Mobile, an application built into Samsung’s Android distributions, is potentially of more concern. Although the company rejected the global notification as being linked to unspecified internal tests, many of those who wrote to El Reg stated that they have disabled the application. Stock apps can only be uninstalled if you effectively wipe the phone and install a new operating system – unlocking the bootloader and reformatting with a new third-party custom ROM.
Samsung did not respond to our questions about how a “disabled” application could receive and display push notifications. Nor did it say what other functions this “disabled” application was capable of performing. ®
Updated to add
A Samsung representative later told us, referring to the data breach on its UK customer account pages: “Less than 150 customers have been affected, and we are contacting them directly.”
Stop your addiction to storage