Skip to main content
  1. Home
  2. Computing
  3. News

Samsung patches flaw in update tool to foreclose man-in-the-middle attacks

By

samsung patches flaw in sw update galaxy tabpro s 9776
Jeffrey Van Camp/Digital Trends
Samsung has patched a flaw in its drive update tool that would have allowed malicious actors to carry out man-in-the-middle (MITM) attacks.

The Samsung SW Update tool tracks the software on your Samsung laptop or computer and alerts you of updates when they are available. Researchers at Core Security discovered that this tool was sending user data back to a server in clear text and unencrypted, making it a prime target for interception.

Recommended Videos

A second vulnerability revealed that Samsung’s software did not authenticate updates as they were being downloaded from Samsung’s servers. This could in theory allow an attacker to inject their own malware into your computer.

Related

“These vulnerabilities in Samsung SW Update Tool could allow a malicious user to read and modify the requests made both by the user and by the Samsung servers and potentially allow such user to infect the victim with a malware or a remote access tool and gain control over its machine,” said Core security researcher Joaquín Rodríguez Varela in a statement.

“After our report, Samsung implemented a ciphered communication between the tool and its servers and also a verification mechanism of the downloaded drivers.”

According to the advisory, Core Security first notified Samsung of the vulnerabilities it discovered in late January and Samsung released a fix for the update tool in early March following weeks of correspondence with the security researchers.

This isn’t the first time that Samsung has had security issues with the SW Update tool. A Microsoft employee last year found that the SW Update tool in certain Samsung computers was disabling the automatic updates in Windows 8.1. The file that was responsible wasn’t built in from the start on your computer but rather installed unknowingly when SW carried out one of its own updates. Samsung ultimately patched that flaw too, but had denied it was an issue at first.

Editors' Recommendations

Topics
Jonathan Keane
Jonathan Keane
Former Digital Trends Contributor
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
AMD’s gaming revenue is down by 48%, and it won’t get better
The AMD Radeon RX 7900 XTX graphics card.

AMD has made some of the best graphics cards in the last few years, and yet its gaming GPU market still appears to be fairly niche when compared to Nvidia's gigantic share. This sentiment is backed by AMD's most recent earnings call, which revealed that its gaming revenue is down by a staggering 48% year-over-year.

Things have been looking kind of grim ever since rumors started spreading that AMD may be giving up on the high-end portion of the GPU market. There have been whispers that AMD may have had a perfectly viable high-end graphics card that it decided not to launch, instead focusing on the mainstream segment. The earnings call gives some context to these rumors.

Read more
Best MacBook deals: Get an Air for $605 and save on M3 MacBook Pro
A MacBook Pro M2 sits on a wooden table with a nice bokeh background.

Apple has been in the laptop game for quite a while now, and its MacBook Air and MacBook Pro lineups are some of the best laptops on the market, especially since Apple has started using its own chips. Of course, you do have to pay a premium for the brand name and the product, and if you're thinking of grabbing one of these, then you may need to rely on some solid Apple deals to get you through. That's why we've scoured some of the biggest retailers online and found the best deals we could, whether you want an early-model MacBook Air M1 or the latest M3 MacBook Pro. That said, if you're not really feeling any of these MacBooks, be sure to check out these other great laptop deals instead. To complete your full Apple suite, pair a new MacBook with AirPods deals, Apple Watch deals and iPhone deals.
Best MacBook Air (M1) deals

The Apple MacBook Air (M1) started a seismic shift for Apple being the first of its Airs to have an Apple-based processor. We took a look at the differences between the M2 and M1 and the M1 is still looking pretty great. It's also a touch nearer to affordable than anything else here. Fast yet fanless so it's silent to use, you gain an 18-hour battery life, a gorgeous looking 13.3-inch Retina display along with all the effortless style you'd expect from an Apple device. These laptops are best for students or those who want something stylish yet reasonably powerful to use on the move. Nowadays, deals are becoming a little harder to come by unless you're willing to consider a refurbished/renewed model.

Read more
Hurry! Surface Pro 9 and Surface Laptop 5 have hefty price cuts today
The Surface Pro 9 in laptop mode on a table.

Microsoft's Surface devices are high-performance machines that are designed to maximize the capabilities of Windows 11. If you're on the lookout for Surface Laptop and Surface Pro deals, don't miss this chance to get a discount from Best Buy on the latest consumer models, as the Surface Pro 10 and Surface Laptop 6 are only available for commercial users for now. The Microsoft Surface Pro 9 is on sale for only $800, for $300 in savings on its original price of $1,100, while the Microsoft Surface Laptop 5 is also down to $800, for $500 in savings on its sticker price of $1,300. You better hurry with your purchase though, as we're not sure when these offers will expire.
Microsoft Surface Pro 9 -- $800, was $1,100

Microsoft Surface Laptop 5 -- $800, was $1,300

Read more