Samsung Smartphones Vulnerable To Remote Wipe Hack

DavidGilbert99 writes "Security researchers have discovered a single line of code embedded in websites which could wipe all data from your Samsung Galaxy S3 and other smartphones. Samsung smartphones including the Galaxy S3, Galaxy S2, Galaxy Ace, Galaxy Beam and Galaxy S Advance all appear to be affected by the bug which triggers a factory reset on your phone if your web browser is pointed to a particular website. Smartphones can also be directed to the code through NFC or using a QR code. Once the process has been initiated, users are have no way of stopping it. The hack was unveiled at the Ekoparty 2012 security conference in Argentina by Ravi Borgaonkar, a security researcher at the Security in Communications department at Technical University Berlin. ... Only Samsung smartphones running the company's proprietary TouchWiz user interface appear to be affected. According to telecoms engineer Pau Oliva, the Samsung Galaxy Nexus is not affected, as it runs on stock Android and doesn't use the TouchWiz skin on top." Hit the link above for a video demonstration.

Manufacturer's Android

[morcego]

People still use the manufacturer's version of Android ? (Any manufacturer, not only Samsung).

It is bloated, slow, full of useless crap.

The first thing I do on any new android phone that lands in my hands is to replace the firmware with something less full of )(@#*)(#$.

Re:Manufacturer's Android

I'm guessing you're willing to help every hamster out there replace their stock firmware, right? Mainly because they aren't as competent as you are.

Re:Manufacturer's Android

Because you have a Verizon phone and aren't a first class citizen in the Nexus ecosystem.

I just restored mine back to stock so I could get the official JB ROM. I've been running alternate ROMs for the last few months so I could have JB since Verizon was taking too long to release it. I'm still waiting on my Xoom, which is Nexus in all but name but is also a Verizon device.

Re:Manufacturer's Android

[DCstewieG]

Some people might not like voiding their warranty the day they buy their phone.

Re:Manufacturer's Android

[Scott64]

I don't think he's talking about that. That's not full of crap from the manufacturer (Samsung). The Nexus devices are free of all of that crap.

The S III I bought recently got the root/CWM/AOKP treatment within the first couple hours of ownership (as soon as the kids went to bed).

Re:Manufacturer's Android

[admdrew]

[Android is] the PC reincarnated into a mobile device

Correct. Yay freedom!

Re:Manufacturer's Android

Ah, circusware comes to the phone. I'm glad that Android has brought the crappy PC experience to the phone as well.

Re:Manufacturer's Android

[na1led]

Is that also the reason why 99% of the world still use a PC, and not a MAC?

Re:Manufacturer's Android

[interkin3tic]

I disagree that, at least in samsung's case, touchwiz runs like crap.

I rooted it and replaced it with non-touchwiz ICS after a few months. It was not really that different to me.

Seems to me that slashdotters and mobile enthusiasts get upset about touchwiz at least on principle, not on any real disadvantages on it. Well... aside from the current vulnerability, so maybe they have a point. Anyway, yes, it comes with Need for speed and some other crap you didn't ask for, and yes some of it can't be uninstalled simply, and yes, it is annoying when samsung delays updating from gingerbread for months and months simply because they haven't finished diddling ICS. But it's not like they took Windows 7 and customized it to the level of crap of windows ME.

Re:Manufacturer's Android

Because "quite nice" is not exactly what you want your smart phone to be. Try "amazing" like iPhone.

Huh. That's one strange definition of "amazing" you've got there. I'd look up where you found that definition, but the last time I asked my iOS6 phone to look up the location of something, I wound up in southern Brazil when I was trying to get across New York City.

Re:Manufacturer's Android

It smells really strongly of "corporate shill" in here today.

Re:Manufacturer's Android

[ilikenwf]

Same with my Nexus, minus the kids part. I use AOKP.

Re:Manufacturer's Android

Because "quite nice" is not exactly what you want your smart phone to be. Try "amazing" like iPhone.

Amazing? You have an iPhone..... don't your type usually say "FABULOUS!"

Re:Manufacturer's Android

[the_humeister]

The second thing I do is install Cyanogenmod. The first thing I do is make sure the device works (sucks having a new cellphone that doesn't work).

Re:Manufacturer's Android

Steve Jobs: "You can have our devices in any configuration you want... as long as you what you want appears on this extensive, exhaustive, comprehensive list:"
1. white
2. black

Re:Manufacturer's Android

[FreonTrip]

Hey, I'm free to take a PC and give it new life with an OS that's well-maintained, or retool it into doing something profoundly different than its designers originally intended. With a smartphone I get to look forward to wrestling with hardware and software put into place to keep me from doing what I want with something I paid for, and the limitations on power and utility put into place by the carrier, engineer, and the simple restrictions necessary for a device to fit into a pocket and have a battery life better than a first-generation Gameboy running on zinc-carbon batteries. So what I'm saying is that in many key ways, the Android experience is substantially worse.

Re:Manufacturer's Android

[kelemvor4]

Because "quite nice" is not exactly what you want your smart phone to be. Try "amazing" like iPhone.

Sounds like apple fanboy talk to me. A smartphone is a smartphone, the amazing should have worn off shortly after you got your first one regardless of the model.

Re:Manufacturer's Android

[Samalie]

Because this is what the average person does when they buy a driod?

You have to realize...the greatest strength of Andriod is also its greatest failing. Sure, you CAN load a custom firmware...but outside of the tech circles, who the fuck actually DOES it?

Re:Manufacturer's Android

The GP specifically referred to "the manufacturer's version of Android". To whom did you think you were replying?

Re:Manufacturer's Android

[fearlezz]

Yes, they do. About 95% of people out there would answer "yes" when internet explorer asks "Are you sure you want to install this virus?". And you expect those people to install custom firmware?

Re:Manufacturer's Android

[wonkey_monkey]

People still use the manufacturer's version of Android ? The first thing I do on any new android phone that lands in my hands is to replace the firmware with something less full of )(@#*)(#$.

I hate to break it to you, but you are not representative of "people" when it comes to this sort of thing. Most people a) are perfectly happy with everything their phone does when it comes out of the box, b) don't even know they can reflash their phone and c) wouldn't have the first clue how to go about it if they did.

Re:Manufacturer's Android

[rickb928]

If you stick to buying a phone that has an unlocked bootloader, or one that has been cracked, then you are golden. If not, you either wait or never get the option.

And there are some phones that are never unlocked.

Good advice that ya just can't always take.

Re:Manufacturer's Android

[RMingin]

Good timing, I switched my T-Mo Galaxy S2 over from a customized version of their stock rom to Cyanogenmod this morning, since I have my VoIP/Wifi calling solution tested to my satisfaction. The integrated/zero setup Wifi calling that T-Mobile offers was the one compelling feature of Touchwiz for me.

I seriously think that T-Mo should investigate moving Wifi calling back out into a standalone APK like it used to be. There are lots of folks like me who like the idea but prefer to have a non-T-Mo handset to use it with, but still on T-Mobile's network, which AFAICT should be the primary product.

Re:Manufacturer's Android

[rickb928]

"something I paid for, "

For most of us smartphone users, we haven't actually finished paying for our phone. We 'bought' them at the subsidized price, and are paying them off with a slightly inflated monthly service fee. When the contract is up, we 'paid for' them. Sort of.

Which is one reason I kept my G1 for so long...

Re:Manufacturer's Android

UEFI

Re:Manufacturer's Android

[jo_ham]

Everyone who uses a computer with a network interface uses a MAC.

Re:Manufacturer's Android

[pmontra]

I also quite like Touchwiz. A friend of mine has a Nexus with ICS and I don't see any gain or loss of functionality and speed. The look and feel is different, but that's a matter of personal tastes. Touchwiz on the SG2 is fast, don't know on older phones. Furthermore what I'm using most are the apps (browser, email, ebook reader, etc) and they are exactly the same whatever Android "skin" one is using.
This bug is nasty, I installed exDialer as a workaround as explained in the XDA thread about the bug. I hope Samsung fixes it quickly. The update to 4.1 for my unbranded SG2 is scheduled for November, hopefully they'll bundle it in that one. Don't know what happens on older phones which don't get updates or with carrier specific firmware that has to be approved by the carriers.

Re:Manufacturer's Android

[Cinder6]

I wish there was a more streamlined process for loading custom firmware on an Android phone. I know this is pretty unrealistic, given the number of models out there, but I can still dream, right? I loaded CM on my niece's Galaxy S, and the amount of work it took surprised me (won't list it all here, as I'm sure most people know the process better than I). Once I had it "primed", loading different firmwares was a snap, but getting it to that point was less than fun, and that's probably what stops most people from even attempting it.

(Full disclosure: I'm an iPhone user, and this was my first extensive experience with Android. Though I'm in no way technically challenged, my unfamiliarity with the system probably worked against me and added some time. I'm also sure that more modern [and more popular] hardware has more dev support, and is thus easier to tinker with.)

Re:Manufacturer's Android

[devleopard]

It's actually more like 93% and very slowly diminishing (given Apple's high costs). I suspect over time we'll also see a small percentage of people become tablet-only.

However, it's interesting to see the sentiment shift. Years ago, the assumption about PC use was that Microsoft's unfair business tactics, rather than the superiority of the platform, were what caused the dominance.

Re:Manufacturer's Android

[morcego]

Some people might not like voiding their warranty the day they buy their phone.

Which is why we all make a nandroid backup before flashing a new firmware.

Re:Manufacturer's Android

[morcego]

I wish there was a more streamlined process for loading custom firmware on an Android phone. I know this is pretty unrealistic, given the number of models out there, but I can still dream, right?

Wasn't Ericsson doing something like this ? I remember some talks about them opening a support line and all that to make it easy for people to replace their firmware.

Re:Manufacturer's Android

[morcego]

People still use the manufacturer's version of Android ? The first thing I do on any new android phone that lands in my hands is to replace the firmware with something less full of )(@#*)(#$.

I hate to break it to you, but you are not representative of "people" when it comes to this sort of thing. Most people a) are perfectly happy with everything their phone does when it comes out of the box, b) don't even know they can reflash their phone and c) wouldn't have the first clue how to go about it if they did.

Then they should be buying an iPhone.

Seriously. I'm not an apple fan boy or anything but, out-of-the-box, I find the iPhone to be better(*). The reason I own 3 Android phones and not a single iPhone is because, after I tweak it, they become faster, better and exactly how I want them to be.

* - Of course, I'm disregarding price and different hardware functions, like a qwerty keyboard. Take this as a comparison between the iPhone and an equivalent android device.

Re:Manufacturer's Android

[morcego]

If you stick to buying a phone that has an unlocked bootloader, or one that has been cracked, then you are golden. If not, you either wait or never get the option.

And there are some phones that are never unlocked.

Good advice that ya just can't always take.

That is one of the things I check before buying. Turns out most phone are either unlocked or cracked. But you are correct, not all of them are, and people should be careful.

Re:Manufacturer's Android

[nogginthenog]

I use PPP you insensitive clod!

Re:Manufacturer's Android

[morcego]

Good timing, I switched my T-Mo Galaxy S2 over from a customized version of their stock rom to Cyanogenmod this morning, since I have my VoIP/Wifi calling solution tested to my satisfaction. The integrated/zero setup Wifi calling that T-Mobile offers was the one compelling feature of Touchwiz for me.

I seriously think that T-Mo should investigate moving Wifi calling back out into a standalone APK like it used to be. There are lots of folks like me who like the idea but prefer to have a non-T-Mo handset to use it with, but still on T-Mobile's network, which AFAICT should be the primary product.

If you are careful, you can migrate most of the native apps to the new firmware. I did it with Motorola's MotoID. Make a backup with Titanium Backup, and restore it after flashing.

Re:Manufacturer's Android

First thing first, learn to disable (since Android 4.0) pre-installed apps and LEARN to install another Launcher than OEM own one.

THEN if you still feel that you have "bloated, slow, full of useless crap" Android, you are free to hang yourself to nearest light bulb.

Re:Manufacturer's Android

Huh. That's one strange definition of "amazing" you've got there. I'd look up where you found that definition, but the last time I asked my iOS6 phone to look up the location of something, I wound up in southern Brazil when I was trying to get across New York City.

That is amazing!

Re:Manufacturer's Android

Only in some countries replacing software system voids warranty.

Example most EU countries, it is legal to replace software system and hardware warranty isn't voided at all, unless company can proof that custom software is responsible for that and they need to proof it with multiple devices with same software that it cause the same problem everytime.

Like if install custom Android and few months later suddenly your speaker gets mute or broken. It is their task to proof that the software suddenly caused that to broke. They need to proof that software sent too high voltage to speaker so it didn't work in its meant specific range.

Re:Manufacturer's Android

[ColdWetDog]

I'm guessing you're willing to help every hamster out there replace their stock firmware, right? Mainly because they aren't as competent as you are.

Hamsters get smartphones these days? I don't even let my dog have a phone.

Some people and their pets.

Re:Manufacturer's Android

It smells really strongly of "corporate shill with sockpuppet mod points" in here today.

Re:Manufacturer's Android

[ceoyoyo]

You mean not everyone likes buying a product and then having to spend time fixing it before they can use it? Say it isn't so!

Re:Manufacturer's Android

[mcgrew]

We 'bought' them at the subsidized price, and are paying them off with a slightly inflated monthly service fee.

Slightly inflated? I paid $100 for my feature phone, a $50 one-time connection fee, and pay $45 per month for unlimited talk, text, email, 411, intenet, roaming, and probably one or two more I forgot about. How much is your monthly bill? I don't know anyone with an iPhone or an Android that's paying less than twice what I pay every month. I can't call >100% "slightly" inflated. In a year you've paid enough more than I do to outright buy any smartphone.

Re:Manufacturer's Android

[bensode]

I disagree. Watercooler talk at my office I often hear complaints about forced bloat. There are many luddites I work with that go out of their way to root their Android phones without asking the IT department to do it for them and then hold it high and proudly announce that they've done so without bricking. And these are the types of users that have a difficult time docking/undocking a laptop ...

Re:Manufacturer's Android

[mcgrew]

Informative? The mods who modded "funny" get it. Hint: he's not talking about computer makes and models, he's talking about network addressing.

As Mr. Leghorn says, "It's a joke, son."

Re:Manufacturer's Android

[Miamicanes]

Some people might not like voiding their warranty the day they buy their phone.

Which is why we all make a nandroid backup before flashing a new firmware.

> Some people might not like voiding their warranty the day they buy their phone.

Manufacturers can lie about warranty-invalidation until they're blue in the face. The Magnuson-Moss Warranty Act ( http://en.wikipedia.org/wiki/Magnuson%E2%80%93Moss_Warranty_Act ) is a potent weapon that no manufacturer, not even Apple in their most arrogant AT&T-exclusive hissy fit, would dare to push back against because the FTC will smack them down and make a total example out of them.

Under Magnuson-Moss, a manufacturer can only deny warranty coverage if they can demonstrate that whatever the consumer did was literally the cause of the failure... and historically, the FTC hasn't made their job easy. They basically get one chance to make their case to the FTC, and if the FTC thinks the company is harassing the customer and wasting their time on a silly excuse, it will instantly smack them down and hit them with a huge fine.

If the manufacturer wanted to use "we had to reflash it via JTAG to stock" as an excuse for denying the claim or imposing a service fee, they'd have to testify that they don't routinely JTAG-reflash to stock as a troubleshooting step anyway.

If they tried to argue that you somehow triggered a condition via software that caused damage (say, setting a pair of directly-connected GPIO pins to outputs, with one high and one low), they'd still be backed up against the wall and told they were idiots for not putting a resistor between them, or at least going out of their way to make it abundantly clear to end users that custom firmware must never, ever do that specific action. In stark contrast to most consumer non-law, the FTC takes consumer rights seriously, and doesn't take crap from companies who try to wave vague disclaimers around and use them as an excuse and blanket license to run roughshod over consumers. The barrier isn't quite insurmountable, but a company that tried to fight it would have an uphill battle, and quickly discover that its usual dirty tricks weren't going to work this time around.

Companies doing dirty tricks with warranty coverage is nothing new. The same things phone manufacturers try to do today, American automakers did to our parents and grandparents openly and proudly, with a dash of extra salt to rub into consumer wounds ~30 years ago.

Magnuson-Moss is a rare gem of consumer-protection law passed by an angry congress fed up with the increasingly-bold abuses of the 3 most powerful companies in America at the time. Apple, Samsung, HTC, and Motorola might be powerful... but they're *nothing* compared to the "Big Three" American automakers circa 1975, and they know it.

Unfortunately, it's NOT against the law for a company to blatantly lie about its legal responsibilities, so companies can say anything and put all the restrictive text they want to put in their warranty descriptions. You just have to know that when push comes to shove, all you have to do is whisper the magic phrase "Magnuson-Moss" to get your complaint *instantly* escalated to the most senior manager on site and get total white-glove treatment and profuse apologies for the "misunderstanding" (inevitably blamed on the tier-1 support staff, who were just doing what the script told them to do).

Re:Manufacturer's Android

[Golddess]

I don't even let my dog have a phone.

And I thought humans were the only animal to enslave their own kind.

(Note to others, check poster's name)

Re:Manufacturer's Android

We 'bought' them at the subsidized price, and are paying them off with a slightly inflated monthly service fee.

Slightly inflated? I paid $100 for my feature phone, a $50 one-time connection fee, and pay $45 per month for unlimited talk, text, email, 411, intenet, roaming, and probably one or two more I forgot about. How much is your monthly bill? I don't know anyone with an iPhone or an Android that's paying less than twice what I pay every month. I can't call >100% "slightly" inflated. In a year you've paid enough more than I do to outright buy any smartphone.

I paid $350 for my Galaxy Nexus, popped in a Straight Talk SIM, no connection fee, and for $45 per month get unlimited talk and text, and "unlimited" data (2 GB).

Re:Manufacturer's Android

[Miamicanes]

Almost, but not quite. There are plenty of Android phones with bootloaders that are unlocked (officially or otherwise), but are still stuck with old kernels because they depend upon binary loadable kernel modules that are not themselves open-source. Remember, Linux doesn't have a stable ABI, so loadable kernel modules ("drivers", in Windows parlance) are specific to a kernel version.

This is probably the #1 source of recurring grief at xda-developers.com. Every new version of Android ships with a new kernel that breaks every binary driver (camera, GPS, wi-fi, sensors, bluetooth, etc) that came before it. IMHO, it's the #1 reason why Google needs to just fork Android's kernel (since 99.9% of the changes are Android-specific, and few mainline changes really matter to Android devices) and commit to having either a stable ABI, or at least come up with a reasonable thunking layer to enable binary modules that are a year or two old to continue working with newer kernels, absent some *really* good reason (like a catastrophically bad security vulnerability) to justify a compatibility-breaking change.

Re:Manufacturer's Android

[Zero__Kelvin]

"People still use the manufacturer's version of Android ?"

Of course not. One of the requirements for buying an android phone is proving that you have the ability to put a custom version of the OS on it. Are you even seriously asking that? Whomever modded you up should be brought into the corporate offices at Digg and promptly shot.

Re:Manufacturer's Android

[Swampash]

People still use the manufacturer's version of Android ? (Any manufacturer, not only Samsung)

The exploit has been tested and shown to wipe a phone running Cyanogen Mod.

https://dylanreeve.posterous.com/remote-ussd-attack-its-not-just-samsung

Re:Manufacturer's Android

[BasilBrush]

People still use the manufacturer's version of Android ? (Any manufacturer, not only Samsung).
It is bloated, slow, full of useless crap.

So Android phones as shipped are not fit for purpose? Doesn't surprise me.

Re:Manufacturer's Android

[BasilBrush]

Correct. Yay freedom!

The freedom to buy a machine loaded with crapware, and then spend time getting it to a fit state to use. Yes, Android sounds very much like the PC platform.

Re:Manufacturer's Android

[NemoinSpace]

question is, do you visit the website and let them wipe it for you? Or do you do *everything* the hard way.?
Seriously, How come nobody has come up with this for IOS. Do you realize how many apple droids spend money having somebody reset their phone?

Re:Manufacturer's Android

[Tastecicles]

I had to reflash my ancient V3i today. I just love the phone, and figured I might as well give it a go since the bootloader was crapped out already, there was little to lose. So I grabbed an image (took some finding), ran the flash update software, and I've gone from Vodafone-locked and branded to completely unlocked and no branding.

If I'd thought to do that five years ago, I'd've been even happier with it than I already am.

Re:Manufacturer's Android

Huh. That's one strange definition of "amazing" you've got there. I'd look up where you found that definition, but the last time I asked my iOS6 phone to look up the location of something, I wound up in southern Brazil when I was trying to get across New York City.

Why would you need the location when looking up a definition of a word?

Oh - it was a poorly shoe-horned in jab at iOS6 maps. Wow, utterly tenuous and pathetic.

Re:Manufacturer's Android

[Havenwar]

Well, if you made a bad business decision, to be frank that's your problem: always compare prices.

When I got my android phone a year back I researched it extensively, and found that I'd be paying about the same for the phone if I bought it outright or got it with the contract; basically making my purchase a zero-interest loan if I got it with the contract. Since I would have the exact same contract regardless, that cost isn't a factor.

Perhaps this is unique to the Swedish marketplace, or perhaps it was just a fluke with this particular model at that particular time, but the basic premise holds true... Compare prices. And remember that it might be worth a few percent extra cost for the convenience of not having to shell out money up front in some circumstances.

Re:Manufacturer's Android

[Troed]

http://unlockbootloader.sonymobile.com/

Re:Manufacturer's Android

[mcgrew]

Well, if you made a bad business decision, to be frank that's your problem

Agreed, that's why I'm paying $45 per month for unlimited everything.

Perhaps this is unique to the Swedish marketplace

From what I've read, all you folks in Europe are a lot luckier than us in the US when it comes to phones. You get the phones cheaper, don't get locked into a carrier, and pay far lower rates if what I've read is to be believed. It's pretty bad here in the US.

Sure you can stop the remote wipe...

[davidwr]

Just initiate a faster local wipe before the remote wipe finishes.

An strong, nearby EMP should do the trick. If that doesn't work, a nuclear explosion close enough to vaporize the phone will.

Re:Sure you can stop the remote wipe...

[davester666]

Or a strong physical shock also fixes the problem. If you notice it happening, you must immediately throw the phone against another surface hard enough to physically disconnect the CPU from memory, preventing the wipe from completing. Make sure you do it hard enough the first time, because the wipe will be completed before you can pick it up and throw it again.

Oh. A web page.

Until I read the description, I thought they had slavishly copied Apple again.

"Hit the link above for a video demonstration"

[Biff98]

Nukes your phone.

Re:"Hit the link above for a video demonstration"

[Cormacus]

Thats what I was thinking. But then I decided it would be impressive enough to risk it... since I was browsing on my desktop machine.

Re:"Hit the link above for a video demonstration"

[Cinder6]

If that's what the link did, it would probably be the most impressive troll I've personally seen.

That's what backups are for

[na1led]

You're more likely to drop the phone in the toilet then getting hacked. Besides, I'm sure Samsung will release a patch soon, so no need to run to the Apple store!

Re:That's what backups are for

[Mordaximus]

You're more likely to drop the phone in the toilet then getting hacked.

I doubt you'll get hacked after having dropped it in the toilet, and if you do you have some rather unfortunate luck.

Re:That's what backups are for

Release the patch soon!? Obviously, you've never tried updating an android phone :D

Re:That's what backups are for

[kelemvor4]

You're more likely to drop the phone in the toilet then getting hacked. Besides, I'm sure Samsung will release a patch soon, so no need to run to the Apple store!

If someone want's to subject themselves to apple's restrictions, I usually encourage them - it will likely be an educational experience. Moreover, they'll probably be on a long and expensive contract that they won't soon forget.

Re:That's what backups are for

[ThatsMyNick]

Mod Up! Carriers have no motivation to send ROM upgrades. Even if samsung makes them available, I am pretty sure the carriers would never find it worth the airtime to send you the upgrade.

Re:That's what backups are for

Guess what, you're exactly right.

Shankar told Security Watch that he'd disclosed the vulnerability to manufacturers and carriers in June, and a patch for the firmware was quickly released. But to date, only Google and certain European carriers have sent an over-the-air update to device owners. Hardware manufacturers, including Samsung, have applied the update to their phones as well. So if you buy an unlocked Samsung Galaxy S III from a Samsung store today, you're safe.

"I decided to go public because everyone has the patch now, they've just been sitting on it for months," Shankar said. "It's the duty of carriers to make sure everyone's devices are safe."

Re:That's what backups are for

[Cinder6]

Educational? I would imagine that the typical usage pattern of most Android users is the same as most Apple users. That is to say, they browse the web, check email, watch the occasional video, and download apps from their respective stores. Most people could use either platform interchangeably without issue. It's those folks who like to tweak and customize that are left in the cold on Apple's devices.

I could be wrong, though. I'm not exactly researching the topic, just going by my personal observations.

Re:That's what backups are for

[devleopard]

Wouldn't I be subjected to the same long and expensive contract if I bought an S3, or does Samsung provide free data plans? (You can purchase both the iPhone and the S3 no commitment)

Re:That's what backups are for

[Reality+Master+301]

Isn't that exactly what's supposed to happen? First toilet-dropping, then wipe?

Re:That's what backups are for

[Algae_94]

Why did the guy go public with it at all. If everyone has the patch, he's just harming people that can't or didn't update. The vulnerability was identified and patched because of him. No need to go public with it.

Re:That's what backups are for

[kelemvor4]

Educational? I would imagine that the typical usage pattern of most Android users is the same as most Apple users. That is to say, they browse the web, check email, watch the occasional video, and download apps from their respective stores. Most people could use either platform interchangeably without issue. It's those folks who like to tweak and customize that are left in the cold on Apple's devices.

I could be wrong, though. I'm not exactly researching the topic, just going by my personal observations.

Here's an example. I have a friend who doesn't know anything about computers.. She bought a "now that's what I call music" cd at walmart and wanted me to put it on her iphone 4s. Ripped it to mp3's and... discovered the iphone won't mount as a drive, AND if we were to install itunes on my pc and connect it, apparently it would erase all her other music from her phone. No SD card slot, so that's not an option either. It seems you have to do everything from one pc. There are more examples, but that was low hanging fruit. Afaik, she still hasn't got the music onto her phone but at least her car has a CD player.

Re:That's what backups are for

[kelemvor4]

Wouldn't I be subjected to the same long and expensive contract if I bought an S3, or does Samsung provide free data plans? (You can purchase both the iPhone and the S3 no commitment)

Sure, but most people go with the contract and $200 out of pocket (and usually higher corresponding airtime rates for prepaid service if I remember right) rather than laying out $600 bucks up front.
My point is that although Apple's got a reputation for being extremely easy to use, a good portion of that is not well earned. A lot of it is on account of the severe restrictions they place on paying customers. I've got several non techie friends who switched from android or blackberry to the iPhone 4s and most of them have mentioned that they regret it.

Re:That's what backups are for

[Cinder6]

That's a good point. I ran into the same issue when I was helping my mom with putting an audiobook on her iPhone (she had been using a nano, but left it at a hotel). The iPhone had been synced with another computer, so iTunes wanted to erase the phone. There is a solution to the problem, but it's a bit involved. Basically, you have to use a 3rd-party program to transfer the phone's (or iPod's) library to the second iTunes install, and it will let you do it. It's definitely an area Apple ought to look into, but I doubt they ever will, what with their growing emphasis on iCloud.

As for your specific case, why not have her rip and sync with her computer?

Re:That's what backups are for

Are you stupid?
If he didn't tell us about it, we'd count on this scenario not being possible, and for sure the carriers would *never* push a patch.
Making it public asserts market pressure.

Re:That's what backups are for

[berj]

She has itunes.. she's already copied music from her computer to her phone so she knows how to do that. Why would you not just tell her to rip the CD in itunes:

insert CD
select tracks
click on "Import CD" button
wait..
Eject CD

It's just about as simple a process as it can get. In fact I think all the modern versions of iTunes just ask you if you want to import the CD as soon as you put one in so the above becomes:

insert CD
click OK
wait...
Eject CD

After that it's just copying the music to her phone which she already knows how to do.

No need to make things any more complicated than they need to be.

Re:That's what backups are for

That says that it was only patched on the unlocked (International) Galaxy S3.

Re:That's what backups are for

Not all GS3s even with current OS apparently http://www.gizmodo.com.au/2012/09/watch-samsung-galaxy-s-iii-4g-on-android-4-1-1-still-vulnerable-to-ussd-reset/

Re:That's what backups are for

[dudpixel]

Huh? Samsung have already released the patch for most galaxy S3s. It was several weeks ago in my case.

http://www.androidpolice.com/2012/09/25/video-most-galaxy-s-iii-devices-are-not-vulnerable-to-ussd-wiping-exploit-it-was-already-fixed-in-an-update/

The patch came over the air and installed with the touch of an on-screen button.

Oh so difficult.

It was a pretty nasty vulnerability, but I'm glad to see it is fixed (for me anyway).

Re:That's what backups are for

[dudpixel]

Did you watch the video?

They just typed the code in manually. AFAIK this is intended behaviour.

The vulnerability was that you could accidentally trigger this through a web link. They didn't test that on 4.1.1, so we still don't really know whether it is vulnerable.

If you have physical access to the phone you could just as easily do a factory reset through the settings. You could do the same on an iPhone.

Anyone know if the 4.1.1 version can be wiped by clicking a web link? If not then I can't see what the problem is.

Here comes the lawsuits!

[Smidge204]

You'd have thought Samsung would learn their lesson already. Don't they know that Apple patented remote data wipe technology years ago?

=Smidge=

Re:Here comes the lawsuits!

[kelemvor4]

You'd have thought Samsung would learn their lesson already. Don't they know that Apple patented remote data wipe technology years ago?

=Smidge=

Blackberry had that feature long before iPhone 3 came out. The article you linked doesn't mention anything about a patent, I suspect it's either not patented or rim owns it.

Re:Here comes the lawsuits!

You're not very good at this humor thing, are you?

Re:Here comes the lawsuits!

If you have to explain a joke, you are not telling a very good one.

Re:Here comes the lawsuits!

=Nobody cares about your signature=

Link Warning

[microcars]

has dueling auto-play videos that have nothing to do with subject. so turn down yer volume.

Re:Link Warning

[gnapster]

I immediately opened the video in YouTube and closed the original tab. That is horrible, what they did to us.

Re:Link Warning

[Joce640k]

Flashblock will fix that for you. Videos don't play until you click them.

Re:Oh. A web page.

It's Apple phones that can famously be jailbroken by a webpage, so you might still be right.

Tested it on my phone, didn't work

[Lebrun]

Galaxy S2 w/ ICS 4.0.3 here. It doesn't work on my phone.

Re:Tested it on my phone, didn't work

Galaxy S2 w/ 4.0.4, which was released by my carrier (Optus) last week. The IMEI display test someone set up in XDA dev worked.
 

Re:Tested it on my phone, didn't work

http://www.gizmodo.com.au/2012/09/watch-samsung-galaxy-s-iii-4g-on-android-4-1-1-still-vulnerable-to-ussd-reset/
Optus phone there still vulnerable

I read "hit the link for a live demonstration"

(No text)

The problem can be avoided by using another dialer

[fluor2]

Luckily Android can be very customized and thus we can work around this.

This can be blocked if you use an alternative Dialer App.
E.g. Exdialer (free).

Read the XDA thread where they investigate.

"The best solution i see at the moment is to install another dialer - when you navigate to malicious page android will display "choose dialer" dialog before doing anything, and you can cancel the operation by pressing back button. Just don't check "default" checkbox." (Source).

Of course, a confirmation dialogue should have been shown for *any* USSD codes.

To be honest, I still find it crazy that anybody can borrow a Samsung-phone and press *2767*3855# on the dialer and it would wipe it. This will probably not be fixed even if Samsung patches the dialer.

Hit the link above for a video demonstration....

....on your phone only it's not a video !!!! ;-)

Apple Iphone 5s feature?

[colin_faber]

How long until Apple `innovates' this feature? :)

What the hell, ibtimes.co.uk?

[wonkey_monkey]

Two autoplaying video streams with audio? Yeah, that was a good idea.

Re:What the hell, ibtimes.co.uk?

[gnapster]

And neither one was the video I came to see!

Re:What the hell, ibtimes.co.uk?

[DahGhostfacedFiddlah]

It makes more sense when you realize that they're both advertisements for ad-blocking software.

Really?

[tooyoung]

//#reset-to-factory_s234!n

This was already fixed

[Emetophobe]

Most Galaxy S III Devices Are Not Vulnerable To USSD Wiping Exploit: It Was Already Fixed In An Update

Re:This was already fixed

http://www.gizmodo.com.au/2012/09/watch-samsung-galaxy-s-iii-4g-on-android-4-1-1-still-vulnerable-to-ussd-reset/

Re:This was already fixed

[dudpixel]

Did you watch the video?

There's no indication that the 4.1.1 version has the vulnerability. Typing the number into the dialer is the intended way to do it. The issue was in being able to launch the dialer and dial the number after clicking a web link. People with fixed phones have said that the web link just opens a blank dialer.

It's possible that 4.1.1 has not been fixed, but they did not test it correctly.

What they did is hardly a problem, since if you had physical access to the phone you could factory reset it through the settings menu. You could do the same on an iPhone.

Re:The problem can be avoided by using another dia

They could even go in to settings and select Wipe Data / Factory Reset!!!

Re:The problem can be avoided by using another dia

Hey - is that the new Samsung Galaxy S3? Can I see it a second???

Re:The problem can be avoided by using another dia

So fanbois stop to bash iPhones Map app (that sucked even when Google was behind it) because of non-technical issues but installing an alternative dialer is considered a valid fix for Android when the "issue" at hand is wiping the entire phone?

Wow. Just wow.

Just another reason to love fanbois. They have no sense of perspective at all.

Re:The problem can be avoided by using another dia

[Emetophobe]

I mentioned this in another post, but the exploit was already patched a few weeks ago. Source.

You have the same freedom on an iPhone

[SuperKendall]

[Android is] the PC reincarnated into a mobile device

Correct. Yay freedom!

You have that same freedom on the iPhone - you can jailbreak.

The difference is that the default non-technical user does not get this "freedom" without some understanding technology that enables them to properly handle the freedom they have...

People like to bring up Android as the platform of choice - but why is it not a valid choice to want a platform more secure by default, again for non-technical users?

Re:You have the same freedom on an iPhone

[Android is] the PC reincarnated into a mobile device

Correct. Yay freedom!

You have that same freedom on the iPhone - you can jailbreak.

The difference is that the default non-technical user does not get this "freedom" without some understanding technology that enables them to properly handle the freedom they have...

People like to bring up Android as the platform of choice - but why is it not a valid choice to want a platform more secure by default, again for non-technical users?

You seem to think that jailbreaking to load Cydia and some pirated apps is somehow analogous to being able to reload the device with 100% open-source software from the ground up... Interesting... Go away troll.

Re:You have the same freedom on an iPhone

[admdrew]

To each their own. Enjoy those maps!

Re:You have the same freedom on an iPhone

Android users never pirate. right.

Re:You have the same freedom on an iPhone

[DigiShaman]

Granted. Maps sucks IMHO. Wish Google Maps was back on. Instead iPhone users get a shitty TomTom app with a nifty 3D feature.

However... We are talking about Apple that's close to being the first 1 Trillion dollar company. They will throw money at the problem. They might even purchase their own freaking drones and vehicles to make it happen. But yes, for now they have some catching up to do.

Re:You have the same freedom on an iPhone

[admdrew]

Yeah and I'm hopeful Google Maps will be back at some point.

Re:You have the same freedom on an iPhone

Don't get your hopes up yet.

Re:You have the same freedom on an iPhone

[admdrew]

Don't like to reply to ACs, but for everyone else's benefit, but Google may have an iOS mapping app in the works after all.

Apple

[Fuzzums]

The question is what Apple will say about this feature.

Re:Apple

"Congratulations, Samsung! You finally came up with something on your own!"

mod parent up

[Krischi]

nt

Re:The problem can be avoided by using another dia

Not an Android problem. This is Samsung Touchwiz issue.

Exclusive free bonus content!

[zyche]

But at least there is an offer of exclusive free content! Yay!

Re:Exclusive free bonus content!

Free content being a phone wipe

ROOT IT!!!

[Picass0]

Root your android! It will never truely be yours until you do! You can never trust it until you're certain it doesn't call home to your provider.

I have a Samsung Galaxy S2. I'm running a modified ICS spin I downloaded from xda-developers.com with GO Launcher. Touchwiz sucks.

Now...a backup

[WhackAttack]

I am definitely going to back my S2 up now. *shudder*

Re:That's funny

Eh, different strokes for different folks. I happen to like a phone that feels like a toy I got at McDonalds. If it breaks (which happens every time I drop it), nothing of value is lost. And I don't have to worry about it being stolen. Last week, a couple minorities tried to rob me. When they saw my phone, they were like "what the fuck?", "are you fucking kidding me?". They even gave me $50 and told me to get a real phone.

IT'S NOT A BUG!!!

IT'S A FEATURE!!!

I can finally wipe my phone remotely without needing anything else!!!

Apple to Sue

In other news, Apple is set to file a Patent Infringement Suit against Samsung over Patent 7,242,992, "System and Method for Remote Destruction of Data using Remotely Accessed Web-based Code."

It is analogous

[SuperKendall]

You seem to think that jailbreaking to load Cydia and some pirated apps is somehow analogous to being able to reload the device with 100% open-source software from the ground up...

Why is it not? After jailbreaking you can change anything on the OS. There's no need to reload the whole thing (although that too is possible) when you can instead change any aspect of the way the system behaves.

Cydia is all about modification of system and third party apps, plus applications that Apple would not approve. And you can side-load from anywhere else.

It's exactly analogous, because for most people jailbreaking is about the freedom to change the system, just as re-loading the OS accomplishes the same thing on Android.

One way to note that it's the same, is that after jailbreaking you can load newer versions of Apple's OS on older devices APple does not support - exactly like on Android using other builds to load newer versions of Android on devices the carriers are not supporting.

Re:The problem can be avoided by using another dia

[ceoyoyo]

Of course it's an Android problem. Samsung phones are by far the most common flavour of Android phone, and they have "Android" prominently displayed all over the place.

If Google doesn't want manufacturer or carrier screwups to reflect badly on Android then they need to be more careful about licensing use of the brand.

users are have no way of stopping it?

[eegad]

You have no chance to survive make your time?

No way of stopping it eh?

[Red_Chaos1]

What, if I yank the battery and then put it back and start up, it will resume the process? Granted you'd probably have to be super fast for that to help, but still...

I am thanks

[SuperKendall]

Enjoy those maps!

I am. I particularly like 3D mode - even for places that have no 3D building data, I like being able to see the degree of hills in an area I might want to ride a bike in.

You could see the same thing in Google Earth, but the road overlays in Google Earth are not as readable as in the Apple maps.

Searching for me has been OK so far, I know others are not as lucky.

This not a samsung bug, and it's already fixed

[StealthHunter]

The dialer no longer allows special characters that are part or USSD codes. see patch:
https://android.googlesource.com/platform/packages/apps/Contacts/+/39948dc7e34dc2041b801058dada28fedb80c388%5E!/#F0

now, everyone can still rant about how long it will take for owners to receive an updated version of Android (if ever).

and before anyone starts the iOS vs Android bantering. No, iOS does not have this particular flaw:
"Specifically, if a URL contains the * or # characters, the Phone application does not attempt to dial the corresponding phone number."
https://developer.apple.com/library/ios/#featuredarticles/iPhoneURLScheme_Reference/Articles/PhoneLinks.html

Not a Touchwiz- or Samsung-specific problem

[Swampash]

Exploit works on non-Samsung phones too.

https://dylanreeve.posterous.com/remote-ussd-attack-its-not-just-samsung

Here is a better URL for the video

[drkstr1]

It's hard to watch a video on a page that continually loops a flash add (with sound), and with no way to stop it. For those of you who have trouble paying attention to people talking over each other, here is a link to the video on youtube.

Re:The problem can be avoided by using another dia

The reset is a touchwiz issue, the running of ussr codes without verification is an android problem
http://www.gizmodo.com.au/2012/09/touchwiz-security-bug-could-wipe-your-samsung-galaxy-phone/

um...

[Tastecicles]

take out the battery?

Test it out here

[Zanadou]

Here's a live demo of the actual exploit:

http://dylanreeve.com/phone.php

Open the above URL on your Samsung Android phone. If your vulnerable, the site will automagically open the dialer, enter and 'execute' (dial) "*#06#", and then display your IMEI number.

On my Nexus S (made by Samsung) running CyanogenMod 10 (Android v4.1.1) it opened up the dialer and displayed "*#06#" but didn't 'execute' it. Interesting.

(Of course, entering a URL into your phone give in in a Slashdot post concerning a phone vulnerability.... is it safe?? Of course not, use your common sense. Open the URL up in your computer browser first and check.)

Response from Samsung

[DavidGilbert99]

Samsung has now issued an official statement: http://www.ibtimes.co.uk/articles/388192/20120926/samsung-responds-android-smartphone-hack.htm

Re:The problem can be avoided by using another dia

[helix2301]

NFC is a technology that allows data to be sent over very short distances. For mobile devices, the protocol allows digital wallet applications to transfer money to pay at the register. While the technology has been slow to take off, despite the adoption by Google for its Wallet payment application, a number of recent high-profile announcements have boosted its adoption.

Re:The problem can be avoided by using another dia

[Asic+Eng]

Dialing *2767*3855# seems slightly more complicated than going through the menus and selecting factory reset, though. So in that sense I think it's not a problem. Apart from that, I recommend NoTelURL - then you can set that as default when the "choose dialer" dialog comes up, and it won't do anything with USSD codes in websites. (It's free, too.)