Samsung issues software fix for Galaxy S3s affected by malicious USSD hard reset exploit

Samsung Galaxy S3 review full screen android 4.0 apps home screenHere’s the scary version of the above headline: “One line of HTML code could remotely wipe your Samsung phone, and it could be hidden in the very next link you click.” Eeek! The idea that a small piece of code embedded in a website, QR code or even in an NFC transfer could cause that much damage is unsettling, and worse still, it’s absolutely true.

The all-powerful code was demonstrated at the Ekoparty security conference earlier this week, and was shown to affect many Samsung phones using the company’s TouchWiz user interface including the Galaxy S3. For those interested in seeing the so-called “dirty code” in action, this is the video you need to watch.

It works by forcing the phone to auto-dial a specific Unstructured Supplementary Service Data, or USSD, code to start the remote wipe process and in some cases, permanently disable the SIM card too. You may have used USSD codes before, for example to find your phone number or to add credit to some pay-as-you-go phones. Ravi Borganokar, the researcher who demonstrated the kill code, said the whole process could be over and done in just three seconds.

However, before you fearfully disable the data connection on your phone, Samsung has issued a statement to put your mind at rest: “We would like to assure our customers that the recent security issue concerning the Galaxy S3 has already been resolved through a software update. We recommend all Galaxy S3 customers to download the latest software update, which can be done quickly and easily via the over-the-air service.”

Is your Samsung phone vulnerable?

This is good news, and even better is that many S3 owners have found the patch has already been applied, and that European i9300 Galaxy S3s haven’t been as widely affected, and neither have all i747 AT&T S3s.

While Samsung only mentions the Galaxy S3, Slashgear.com reports that the exploit has been shown to work on the Galaxy S2, the Galaxy Beam, the Galaxy Ace and the S Advance.

If you’re wondering whether your S3, or any TouchWiz Samsung device, is vulnerable to the attack, here’s a way to find out. Visit this safe website, created by Dylan Reeve, on your phone and if your device’s IMEI number is displayed, then your phone hasn’t been patched. If it doesn’t, then you’re safe.

Additionally, a poster on XDA-developers.com’s forums pointed to the Auto-reset Blocker app available through Google Play as an alternative fix while you’re waiting for the official one. Otherwise, it’s best to exercise good sense and not click on links to or from sources you don’t trust.

Ultimately though, it looks like the disaster has been — or at least, can be — averted, so make sure you check for any OTA updates as soon as possible. You never know, Android 4.1 Jelly Bean could be waiting too.

Computing

Problems with installing or updating Windows 10? Here's how to fix them

Upgrading to the newest version of Windows 10 is usually a breeze, but sometimes you run into issues. Never fear though, our guide will help you isolate the issue at hand and solve it in a timely manner.
Computing

Getting Windows 10 updated doesn't have to be so painful

Windows update not working? It's a more common problem than you might think. Fortunately, there are a few steps you can take to troubleshoot it and in this guide we'll break them down for you step by step.
Mobile

Samsung's advanced folding phone needed 'total reconfiguration' to make it real

Samsung has been showcasing bendable display tech for a few years and now a folding smartphone might finally arrive. The Galaxy X, or perhaps the Galaxy Fold, may be the company's first example. Here's everything we know about it.
Mobile

Save the date: The Samsung Galaxy S10's reveal is set for February

Not long now; with 2019 underway, the Samsung Galaxy S10 is almost here. Before it arrives, here's absolutely everything you need to know about all three of Samsung's next flagships.
Mobile

Everything we know about the Nokia 6.2, which might arrive in January

The Nokia 6.1 was our favorite budget phone of 2018, so we were always going to get excited when details of a successor came to light. However, the Nokia 6.2 will exceed those expectations if leaks are true.
Mobile

HMD Global shows us how a slice of Android Pie is baked up

Waiting for Android updates can be a real chore -- but it's nothing compared to the work manufacturers have to do. HMD Global has released an infographic showing how Android updates like Android Pie are cooked.
Mobile

The Samsung Galaxy M series will be the first with an Infinity-V display

Samsung announced a range of displays at the Samsung Developer Conference and now we have an idea of when to expect the first with an Infinity-V display. The Samsung Galaxy M10, M20, and M30 are being teased by Samsung India.
Mobile

Google Fi is getting support for the next-gen messaging standard, RCS Chat

Google has been pushing the development of the RCS Chat standard, and now it's finally bringing that new standard to its own carrier -- Google Fi. With Chat, customers will get features like read receipts, better group messaging, and more.
Mobile

OnePlus 7 to use latest body design to get rid of the notch, leak suggests

The OnePlus 6T may still be new, but we're already looking ahead to the upcoming OnePlus 7. It will use the Snapdragon 855, and may have a new slider body design. Here's everything we know about the OnePlus 7.
Mobile

The Sony Xperia XZ4 shines in case renders from accessory maker Olixar

Sony may have released the Xperia XZ3 in the past few months, but already it's preparing to release a follow-up, the Xperia XZ4. We're learning plenty about the phone now some details have started to leak out, and it's getting exciting.
Mobile

Benchmark scores surface for Google's midrange Pixel 3 XL Lite

The Google Pixel 3 and Pixel 3 XL are considered to be two of the best Android smartphones, but it looks like Google could be prepping a midrange line. Say hello to the Pixel 3 Lite and Pixel 3 Lite XL.
Mobile

The LG G8 ThinQ may arrive at MWC 2019 with an on-screen speaker

LG is expected to release a successor to the LG G7 ThinQ, possibly called the LG G8 ThinQ, this year and rumors about it are already spreading. Here's everything we know about it so far.
Mobile

Oppo could reveal a new smartphone with a 10x optical zoom

Cracking a solid zoom on smartphones has been a riddle many years in the solving. One company may have finally cracked it though: Oppo may be about to show off a phone with a 10x optical zoom.
Wearables

How to switch TicHealth to Google Fit on the Mobvoi TicWatch C2 and TicWatch Pro

The Mobvoi TicWatch C2 and TicWatch Pro are both much-loved and feature-packed watches, and they offer excellent fitness tracking. Recently, Mobvoi has switched out Google Fit for TicHealth, but you can switch them back. Here's how.