Samsung Knox vulnerability found
Owners of Samsung's Galaxy S4 smartphone and Note 3
devices may have to be careful with their data, after researchers found a
bug that allows malicious apps to snoop on data transfers.
"The vulnerability that the researchers found allowed corporate data to leak through the Know secure container, the researchers reported. They also suggested that code could be injected from outside the container, into it, and run wild on the corporate network," PC World reported, citing the WSJ article.
It added Samsung officials told the Journal the vulnerability was found in developer phones that were not “fully loaded with the extra software that a corporate client would use in conjunction with Knox.”
Knox was developed for the “BYOD (bring your own device)” movement, where personal smartphones are allowed in corporate networks but administrators take steps to make sure sensitive corporate data like email, contacts, and calendar information are not leaked outside.
Under Knox, an encrypted, virtualized space is created within the smartphone, so sensitive data can be handled securely.
Knox also restricts the wipe of data on phones and devices to the corporate data alone, in effect preserving the employee's data.
— TJD, GMA News
Culled from Yahoo Malaysia
No comments:
Post a Comment