Phone Hacks - "Honor View 10 arriving internationally January 8th, Honor 7X Red Model coming to U.S."

Honor View 10 arriving internationally January 8th, Honor 7X Red Model coming to U.S.

MTPwn Can Access Samsung Devices’ Storage Without Unlocking Them

When it comes to Android phone security, one of the best-known platforms is Samsung’s Knox, a suite for Samsung phones aimed at enterprise. It’s considered one of the best on the market, but it isn’t impregnable, as a recently uncovered exploit showed.

The exploit (SVE-2017-10086), which was fixed in the October 2017 security patch or  November 2017 security patch (depending on the device model), leveraged a vulnerability in Samsung’s implementation of Media Transfer Protocol (MTP) that could allow an attacker to view all of a device’s files. It’s been nicknamed “MTPwn”, and it affects all Samsung devices running Android 4.4.x to Android 7.x.

MTPwn allows a hacker to bypass the lock state of unpatched devices even if they’re in “charging” mode, and enable MTP access from a computer. How’s that possible? Affected devices run an MTP server when a device is plugged in and in charging mode. Normally, computers can’t read the files because the phone blocks them from viewing any usable storage on the device. That works pretty well in practice, but Samsung overlooked the fact that the MTP server can receive commands — an attacker can simply force the MTP server on the device to list the device’s files, retrieve the files from its internal storage, or copy files to it.

Check out the GitHub repo of MTPwn to see how it works, and how you to test it out on your own Samsung device.

Source: MTPwn GitHub

tags : android auto, android wear, android device manager, android 1, android phone, android messages, android studio, android tablet, android emulator, android tv, android p, android 17, android tv box, android browser, android keyboard, android apps, android best games, android oreo, android lost, android latest version, android versions, android central, android police, android, android one, android screen recorder.

Comments

Post a Comment

Popular posts from this blog

Google Reportedly Paying Apple $9 Billion to Remain Default iOS Search Option

Image
It’s widely known that Google pays Apple a certain amount of money on a semi-regular basis to make sure that it remains the default search engine option on iOS devices. It has been said in the past that iOS devices equal about 50 percent of Google’s search revenue on mobile devices, so it’s imperative to the company to keep that spot on Apple’s devices. Before the end of 2017 it was reported that Apple was getting upwards of $3 billion from Google to secure that spot. But now, more than a year later from that report, it sounds like the company may be paying a lot more to Apple. Business Insider is reporting information shared by analyst Rod Hall that states Google is now paying $9 billion this year to retain its default situation on iOS devices. What’s more, Hall actually thinks that number will increase by next year, and Google could be paying Apple for those default rights to the tune of $12 billion. Hall also echoes those earlier reports, saying ““Apple is one of the biggest chann
Read more

How to Get iPhone XS Depth Effect Control On iPhone X, iPhone 8 Plus, and iPhone 7 Plus

Image
The iPhone XS and iPhone XR have a brand new feature. After you click a Portrait Mode photo, you can go into the Edit menu and change the intensity of the bokeh. Basically, you can change the background blur (make it softer or more pronounced) after you’ve already clicked the photo. Apple is touting this as one of the best new features in iPhone XS . But you can get it on iPhone X, iPhone 8 Plus and even the iPhone 7 Plus using a third party app. The new depth effect sensor in iPhone XS blurs photos different parts of the background at a different rate. So the effect you get is similar to that on DSLR. This is not the same as what phones like Pixel 2 do. Since the app in question requires depth data to work, it will not work on iPhones with a single camera at the rear like the iPhone 6, iPhone 7, or the iPhone 8. How to Edit Background Blur in Photos on iPhone X, iPhone 8 Plus, and iPhone 7 Plus The app in question is called Focos and we’re big fans of the app. The app made it to our b
Read more

Facebook Uses Your 2FA Phone Number for Targeted Advertising

Image
Being stalked from one website to another by persistent advertising is a real issue, but some companies, like Apple, have made strides to try and reduce its impact . But targeted advertising isn’t going anywhere anytime soon, especially if Facebook has any say in the matter. The company has recently confirmed that it does indeed go to some pretty great lengths to provide information to advertisers, with this latest effort definitely one of the social networking giant’s worst. A couple of days ago, Gizmodo ran a piece that outlined how Facebook uses the phone number some users added to take advantage of two factor authentication as a way to target those same individuals with ads. This is an extension of how Facebook already handles phone numbers saved to the platform’s profiles. How it works normally is if you add your phone number to your Facebook profile, and then add your phone number to some online retailer’s online presence, those two sources can match and be used to target advert
Read more