Research Finds 11 High-Impact Security Flaws on Galaxy S6 Edge -- Security Today

Research Finds 11 High-Impact Security Flaws on Galaxy S6 Edge

By Sydny Shepard
Nov 04, 2015

A team at Google tasked with discovering and exploiting severe bugs and exploits in Android recently turned their attention to the Samsung Galaxy S6 Edge smartphone. The team found “11 high-impact security issues” with the phone.

In just a week of research, the team attempted to find security flaws that could allow them access to contacts, photos, geolocation and other personal data, as well as the ability to remotely wipe the device. In total, they found 11 separate vulnerabilities. In particular, issues with Samsung’s own email client and gallery app created new security risks, in addition to security risks that were already inherent in the underlying Android operating system.

In other words, Android OEM software is adding security risks as well as unnecessary clutter and update delays to Android phones.

Fortunately, the biggest of the 11 flaws were able to be fixed within 90 days of their discovery and the three remaining pose lesser risks and will also be fixed in November. While the team has resolved the issues on the Galaxy S6 Edge, there’s no way they can achieve the same kind of research for the many thousands of other Android devices on the market.

For now, Google has committed to pushing out monthly Android security patches and if it finds the necessary cooperation from mobile carriers, it could make some progress on having a more security strategy.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

Security Industry Association Announces the 2025 Security Megatrends

The Security Industry Association (SIA) has identified and forecasted the 2025 Security Megatrends, which form the basis of SIA’s signature annual Security Megatrends report defining the top 10 factors influencing both short- and long-term change in the global security industry. Read Now
- Cybersecurity
- Artificial Intelligence
Generative AI, Cybersecurity Among Top Risks for Healthcare Provider Organizations in 2025

Overseeing the use of generative artificial intelligence, enhancing cybersecurity and ensuring compliance with a host of federal healthcare regulations headline the Top Risks health systems face in 2025, according to an annual study by Kodiak Solutions. Read Now
- Hospital
Wisconsin Shooting Likely a 'Combination of Factors'

Following the deaths of a teacher and student at Abundant Life Christian School in, Madison, Wisc., police chief Shon Barnes indicated that the motive appears to be a “combination of factors” for a 15-year-old female student’s attack on a study hall. Read Now
- Active Shooter
- Incident Response
Louisville Muhammad Ali International Airport Transforms Operations Using Data Insights

Genetec Inc., provider of enterprise physical security software, recently announced that Louisville Muhammad Ali International Airport (SDF), a civil and military airport in Kentucky, USA is using Genetec Security Center to drive operational improvements to enhance efficiency and security while improving customer experience. Read Now
- Airport Security

Webinars

Building a Unified Approach to School Safety
The Center for Safe and Resilient Schools and Workplaces

Precovery in Action: Proactive Strategies to Promote School Safety and Mass Violence Prevention
Hanwha Vision (formerly Hanwha Techwin), NAPCO Security Technologies, Inc.

Getting Control of your Access

Whitepapers

Salient Systems

A Model for Community Security
Genetec

State of Physical Security 2025
Winsted Corporation

Sit/Stand Consoles: Helping Increase Productivity

New Products

A8V MIND

Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3
AC Nio

Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions. 3
FEP GameChanger

Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction. 3

Research Finds 11 High-Impact Security Flaws on Galaxy S6 Edge

CISA, NSA, FBI and International Partners Publish Guide for Protecting Communications Infrastructure

Fast-food Operator Enhances Safety and Cuts Security Costs with Interface Systems’ Virtual Guard

Eagle Eye Cabinets Extend Video Security to Remote and Hard-to-Wire Locations

ESX 2025 Registration Now Open

ASIS International Announces Officers and Directors for 2025 Global and Regional Governing Boards

ISS Welcomes New Director of Strategic Partnerships, Regional Sales Director

Security Industry Association Opens Call for Nominations for 2025 Women in Security Forum Power 100