In a surprising announcement, Samsung has warned its users about a critical security vulnerability affecting some Galaxy phones and smartwatches powered by Exynos processors. Numerous Galaxy smartphones and smartwatches equipped with Exynos processors are vulnerable to a significant security flaw that enables external entities to execute code on your device.
Affected devices
The vulnerability impacts a range of Samsung Galaxy devices, including popular Exynos-powered smartphones and Galaxy Watches.
Affected Exynos processors include:
- 9820
- 9825
- 980
- 990
- 850
- W920
This means affected devices include the Galaxy S10 series and Galaxy Note 10 series. The Galaxy A51 and A71, Galaxy S20 series, Galaxy Note 20 series, Galaxy A21, Galaxy M13 and Galaxy M12.
For smartwatches, the Galaxy Watch 4 series, Galaxy Watch 5 series, and Galaxy Watch FE are affected.
Security Flaws: Security researchers have pinpointed critical flaws within Exynos components, which hackers can exploit to gain unauthorized access.
This exploit, according to Google’s threat analysis experts, allows foreign actors to gain system privileges and run code on your device. It was also apparently being disguised as a Samsung process so it couldn’t be easily found during system scans.
Obviously, there are a lot of issues when you have foreign code running on your phone with elevated rights. In addition to snooping through your private conversations and photos, hackers can acquire personal information such as bank account details.
According to Google experts, they have observed cases where foreign parties have used this issue to run code on the devices of unwary customers. It is unknown how widespread these attacks are, what kind they are, or even who the assailants are.
Samsung’s Response
Samsung is discontinuing its processors for the next generation of Samsung Galaxy S25 phones. This vulnerability is exclusive to Exynos chipsets. Samsung Foundry recently closed a factory in Taylor, Texas, before it was even completely operational, due to incredibly low yield rates.
This vulnerability, which is specific to Exynos chipsets, arises as Samsung is moving away from its processors for the forthcoming Galaxy S25 devices. Additionally, Samsung Foundry has recently decided to close a facility in Taylor, Texas, due to significantly low yield rates, even before the plant became fully operational.
What Users Can Do
If you own an older Samsung Galaxy phone, it is likely included among the devices mentioned above. The Samsun Galaxy users need to update their devices to the latest firmware immediately to reduce the risk of these attacks. Additionally, users can enhance security by enabling two-factor authentication, avoiding suspicious downloads, and installing a reliable security app.
