The National Institute of Standards and Technology is warning users of a newly discovered Zero-Day flaw in the Samsung Find My Mobile service, which fails to validate the sender of a lock-code data received over a network.
The Find My Mobile feature implemented by Samsung in their devices is a mobile web-service that provides samsung users a bunch of features to locate their lost device, to play an alert on a remote device and to lock remotely the mobile phone so that no one else can get the access to the lost device. The flaw allows an attacker to remotely lock or unlock the device and even make the device rings too.
Read moreAxarhöfði 14,
110 Reykjavik, Iceland