The National Cyber Security Division, which is part of the U.S. Department of Homeland Security has warned Samsung smartphone users who use Find My Mobile about a zero-day vulnerability. Also Read - Samsung Galaxy M32 brings 90hz display, 6000mAh battery under Rs 15,000 in India
Samsung’s Find My Mobile is a feature that enables users to remotely lock, ring, locate, unlock, and wipe their device. But the mechanism the app follows isn’t fully sophisticated. Also Read - Samsung and LG confirm presence at in-person CES 2022
According to the federal technology agency, Samsung smartphones don’t validate the source of lock-code data received over a network. This could allow remote attackers to execute denial of service by initiating unexpected Find My Mobile network traffic. Also Read - Galaxy S21 FE to support 25W charging but will Samsung put it in the box?
For that reason, the NIST rates this service on the Common Vulnerability Scoring System with a base score of 7.8, and the impact score as 6.9, and the exploitability at 10.
Meanwhile, Samsung has assured that it is looking into this matter. In a statement to Mashable, it said, “Samsung takes the security of our products very seriously and we are currently investigating this matter.” Until the company releases a fix for it, it might be in your best interest if you disabled the Find My Mobile feature from your phone.