CybserSecurity News

Tag: Samsung

  • The Billion-Device Blind Spot: Why 40% of Android Users are Now “Sitting Ducks” for Hackers

    Over a billion Android aficionados find themselves within a perilous proximity to cyber threats, with a vast multitude remains blissfully oblivious to the impending danger. Google has disseminated its latest systemic distribution metrics, and the revelations are nothing short of disconcerting: more than 40% of the global fleet is tethered to obsolescent Android iterations that have been forsaken by critical security remediations.

    According to Google’s data, compiled in December, the nascent Android 16 has permeated a mere 7.5% of the market. Android 15 commands a 19.3% share, followed by Android 14 at 17.9% and Android 13 at 13.9%. These versions constitute the narrow corridor of contemporary official support. Conversely, Android 12 and its antecedents have been officially decoupled from vital vulnerability patches. Consequently, while approximately 58% of the ecosystem remains fortified, an alarming 40% languishes in exposure—amounting to over a billion users who are fundamentally incapable of sealing systemic fissures, regardless of their intent.

    Amidst the surging proliferation of deleterious software and clandestine espionage modules, this predicament is particularly egregious. Late last year, Google explicitly cautioned against a burgeoning wave of offensives specifically targeting the Android architecture; legacy systems, regrettably, possess no immunity to these emergent threats.

    The corporation reiterates that while the integrated Google Play Protect framework remains operational for Android 7 and subsequent versions—scanning applications against a dynamic database of malicious code—the foundational security of the OS itself remains stagnant. Furthermore, application-level security is beholden to individual developers, who may continue to offer updates only if the software aligns with the prevailing mandates of the Google Play Store.

    A significant portion of this systemic failure is attributed to the divergent policies of smartphone manufacturers, who hold the prerogative over the longevity of device support. Recently, it was disclosed that Samsung has terminated security maintenance for the Galaxy S21 lineage, encompassing the S21, S21+, and S21 Ultra. These erstwhile flagships are now bereft of both OS enhancements and protective patches. Analytical journals warn that the continued utilization of such hardware precipitously elevates the risk of compromise and infection.

    Moreover, Samsung has recalibrated the update cadence for several more recent models; the Galaxy S22 and S21 FE series have been relegated from monthly to quarterly update cycles, meaning security bundles will now manifest only once every trimester.

    Should a device prove incapable of ascending to Android 13 or beyond, Google advocates for a strategic replacement. Even a contemporary mid-range handset with active support offers a more robust sanctuary than a legacy flagship devoid of updates. In the current digital climate, such a transition is no longer a matter of pursuing novel aesthetics, but a fundamental requirement of digital hygiene.

  • The Source Code Standoff: India’s New Security Rules Alarm Apple and Samsung

    A formidable confrontation is brewing in India between the state and preeminent smartphone manufacturers. The nation’s authorities are contemplating stringent new security mandates for mobile devices, which have already provoked sharp, albeit largely unspoken, resentment from titans such as Apple and Samsung.

    According to the Indian government’s initiative, smartphone architects may be compelled to relinquish the proprietary source code of their devices and implement specific software modifications. This proposal encompasses a suite of 83 security standards, which further dictates a mandatory notification to the authorities regarding significant software updates. Industry representatives contend that such requirements are globally unprecedented and pose a severe risk of exposing guarded trade secrets. These revelations emerged from sources familiar with the deliberations and internal documents scrutinized by Reuters.

    The strategy is a cornerstone of Prime Minister Narendra Modi’s policy, designed to fortify the protection of user data amidst a surge in online fraud and information breaches. India currently stands as the world’s second-largest smartphone market, boasting an ecosystem of approximately 750 million devices. The Ministry of Electronics and Information Technology has asserted its willingness to consider the legitimate apprehensions of the business sector with transparency, urging stakeholders to eschew premature conclusions.

    Following the dissemination of the Reuters report, the ministry specifically emphasized that its consultations with corporations are intended to cultivate a resilient and appropriate regulatory framework for mobile security. Nevertheless, the department refuted the allegation that it intends to demand source code from manufacturers, though it remained elusive as to how this denial reconciles with the documents currently under discussion.

  • Samsung Users: Update Now to Patch Critical Zero-Day Vulnerability

    Samsung has released its September security updates for Android, addressing a critical zero-day vulnerability that had already been exploited in active attacks. The flaw, tracked as CVE-2025-21043 and rated 8.8 on the CVSS scale, is a buffer overflow in the library libimagecodec.quram.so that enables remote execution of arbitrary code on affected devices.

    In its official advisory, the South Korean manufacturer explained that the issue stemmed from improper implementation within libimagecodec.quram.so, a closed-source image processing library developed by Quramsoft that supports a wide array of graphic formats.

    The flaw allowed data to be written beyond allocated memory boundaries, opening the door to exploitation. The vulnerability affected Android versions 13, 14, 15, and 16, and was privately reported to Samsung on August 13, 2025. It has now been patched in the SMR September-2025 Release 1 update.

    Although Samsung confirmed that the bug had been weaponized in real-world attacks, it withheld details on how the exploit chain was carried out or who was behind the intrusions. Such caution is typical when investigations remain ongoing or when public disclosure of technical specifics could trigger further waves of exploitation.

    The fix followed closely on Google’s announcement of patches for two other actively exploited Android flaws—CVE-2025-38352 and CVE-2025-48543. Both vulnerabilities had been leveraged in targeted attacks to seize control of devices.

    September has thus proven to be a turbulent month for the Android ecosystem: several severe vulnerabilities were simultaneously exploited in the wild, forcing vendors to rush out emergency updates in order to safeguard users.

  • Samsung’s 115-inch Micro RGB Display: A New Era in Visual Technology

    Ahead of IFA 2025, Samsung has officially unveiled in South Korea the world’s first large-format display featuring Micro RGB technology, boasting an impressive 115-inch screen. This groundbreaking innovation incorporates red, green, and blue Micro LEDs—each measuring less than 100µm—meticulously arrayed behind the display panel. By independently controlling each RGB LED, the system achieves exceptionally nuanced color reproduction and contrast performance.

    Samsung explained that Micro RGB technology transcends the limitations of conventional backlighting architectures. Through ultra-precise arrangement and independent driving, it delivers unprecedented color accuracy. Paired with Samsung’s proprietary Micro RGB AI image engine, the display analyzes every frame in real time, automatically enhancing and enriching colors in darker or undersaturated scenes to heighten realism and immersion.

    For color fidelity, the display employs Micro RGB Precision Color technology, enabling 100% coverage of the BT.2020 color gamut and ensuring visuals remain true to the creator’s original intent. This capability has earned certification from Germany’s VDE (Verband der Elektrotechnik), underscoring its professional-grade display credentials.

    To address glare in bright environments, Samsung has integrated its Glare Free anti-reflective technology, maintaining a focused viewing experience even in well-lit interiors. The ultra-slim metallic frame exudes a sleek, modern aesthetic, designed to blend seamlessly with diverse interior styles.

    On the smart functionality front, the Micro RGB display features Samsung Vision AI, combining AI-driven image and audio enhancements with an upgraded, generative AI-powered Bixby assistant. This enables more natural, personalized interactions, allowing users to access information without interrupting their content.

    Security is also a priority, with Samsung Knox safeguarding personal data. The display ships with up to seven years of free Tizen OS updates, ensuring continued access to the latest features and optimizations.

    Now available in the South Korean market, Samsung’s Micro RGB display will soon debut in the United States, with global expansion planned. Multiple size options will be offered to meet a range of consumer preferences.

  • The End of Open Android? EU’s New Law Forces Samsung & Others to Lock Bootloaders

    As of August 1, 2025, the European Union has enacted new cybersecurity requirements for smartphones and other radio equipment—amendments introduced under the revised Directive 2014/53/EU (RED) and supplemented by Delegated Regulation 2022/30. These new regulations effectively eliminate one of Android’s hallmark features: the ability to unlock the bootloader.

    Samsung was the first to respond, discreetly disabling the bootloader unlock function in its OneUI 8 firmware. This move is a direct consequence of RED’s mandate that manufacturers guarantee the cryptographic integrity of all firmware components. Now, companies such as Xiaomi, Google, and other Android brands must either follow suit or risk losing their certification for the European market.

    Under the directive, all devices sold within the EU are required to:

    – block the installation of unauthorized software,
    – implement technologies such as Secure Boot,
    – and run only firmware digitally signed by the manufacturer.

    Although the bootloader itself is not explicitly mentioned, the requirement for comprehensive software authenticity verification precludes its unlocking in its current form.

    Until now, Android remained the last major platform that embraced customization—allowing users and enterprises to install custom ROMs and tailor devices to their specific needs. This will soon become a relic of the past. Every piece of software must now be verified and signed; incompatible or modified builds will be blocked at the hardware level. These changes affect not only individuals but also businesses that previously relied on specialized Android versions.

    Samsung’s decision marks a strategic effort to comply with the new standards even before their enforcement date. Other manufacturers are expected to follow quickly. Without RED compliance, devices cannot bear the CE marking and are thus barred from entering the EU market.

    Consequently, Android smartphones in Europe are edging closer to the walled-garden model long associated with the iPhone. Users will lose access to root privileges, custom ROMs, and debugging tools. In place of an open ecosystem, we now face centralized updates restricted to official builds and firmware-level launch control.

    Even Xiaomi—often seen as a champion of flexibility—is bracing for constraints. In China, bootloaders are already locked; in European versions of HyperOS 3, mandatory firmware validation and Secure Boot are expected to follow. While exceptions may remain for certain enterprise models, the average user will no longer enjoy such freedoms.

    For most, this shift signals a rise in security—offering protection from malicious firmware modifications. Yet for enthusiasts and professional users, it marks the end of an era. The Android many once knew is fading—at least within the borders of the European Union.

  • Samsung Forecasts 56% Profit Drop: AI Chip Sales Lag, HBM Deliveries to Nvidia Delayed

    Samsung Electronics has forecast a 56% decline in operating profit for the second quarter of 2025—a figure significantly below analysts’ expectations. The company attributes the drop primarily to tepid sales of chips designed for artificial intelligence systems, a development that has intensified investor concerns over the South Korean tech titan’s ability to regain ground in the competitive semiconductor sector.

    As the world’s largest manufacturer of memory chips, Samsung linked the revenue slump to U.S. government restrictions on the export of advanced AI chips to China. However, analysts have pointed to another critical issue: delays in the delivery of high-bandwidth memory (HBM) chips to Samsung’s key American partner, Nvidia.

    Back in March, Samsung officials announced substantial progress in developing new 12-layer HBM3E chips, with initial shipments expected by June. Yet the company has now stated only that the products are undergoing customer evaluation and have begun shipping—without specifying any details about its collaboration with Nvidia.

    Amid Chinese export controls and rising competition from domestic rivals, Samsung’s position appears increasingly vulnerable. While SK Hynix and Micron have benefited from sustained memory demand in the U.S., Samsung remains heavily reliant on the Chinese market, where stringent export restrictions are in place.

    According to analysts at NH Investment & Securities, the company’s principal challenge is to restore its competitive edge—an effort in which HBM chips play a central role. Additional headwinds include the threat of U.S. tariffs, which could exert further pressure on Samsung’s chip and smartphone earnings. However, raising product prices to offset these losses may prove difficult in an intensely competitive market.

    Preliminary estimates suggest that Samsung’s operating profit from April to June will reach 4.6 trillion won ($3.3 billion), far below the 6.2 trillion won ($4.5 billion) projected by analysts. This would mark the company’s weakest quarterly performance in the past 18 months and a sharp decline from the first quarter of the year. Revenue is expected to remain largely flat, with only a marginal decrease of 0.1%.

    Samsung has also noted that part of the decline in its semiconductor division’s profitability stems from inventory valuation adjustments. Analysts speculate that a substantial portion of these write-downs may be tied to unsold HBM chips originally intended for Nvidia. Revenue from the chip division could plummet by more than 90%, falling to just 500 billion won ($366 million). On a more optimistic note, analysts believe the mobile division may have posted a profit increase during the same period.

    Shares of Samsung Electronics slipped by 0.2%, despite a 1.2% gain in the KOSPI index. Nevertheless, the company announced a 3.9 trillion won ($2.8 billion) share buyback as part of a repurchase program initiated in November of last year.

    Samsung remains hopeful that the situation will gradually improve, driven by the launch of new smartphone models and the expansion of HBM chip sales to clients beyond Nvidia. Still, the downturn in its custom chip manufacturing business persists, due to export controls targeting China and reduced capacity utilization. Even so, the company anticipates narrowing losses in this segment in the second half of the year as demand begins to recover.

  • Samsung Completes Second-Gen 2nm Design (SF2P): Mass Production in 2026, Set to Power Galaxy S27 & Win Qualcomm Orders

    Although Samsung once lagged behind in the race for advanced process technologies, the company has recently accelerated its efforts in the 2nm node, signaling a strong return to form. According to a report from Wccftech, Samsung has successfully completed the foundational design of its second-generation 2nm process, SF2P, with potential mass production slated for 2026. This cutting-edge technology is expected to power the next-generation Exynos 2700 processor, which will likely debut in Samsung’s upcoming Galaxy S27 flagship series.

    Samsung’s first-generation 2nm process, SF2, has already achieved a yield rate exceeding 40% and is being used in trial production of the Exynos 2600. This milestone not only marks steady progress in Samsung’s semiconductor roadmap but also lays the groundwork for future high-volume manufacturing.

    The second-generation SF2P process boasts substantial improvements in both performance and efficiency. Compared to SF2, it delivers a 12% performance uplift, 25% power reduction, and an 8% reduction in chip area. These enhancements will significantly bolster computational capabilities in mobile devices while extending battery life—a critical advantage in an increasingly performance-hungry market.

    As Samsung’s 2nm process matures, reports have emerged of renewed collaboration with Qualcomm. Sources indicate that Qualcomm is currently conducting mass production trials of several chip models using Samsung’s 2nm technology. Should the results meet expectations, Qualcomm may reintroduce a dual-foundry strategy, continuing to partner with TSMC while allocating part of its production to Samsung—thereby diversifying cost and supply chain risk.

    Such a shift would mark a significant narrowing of the gap between Samsung and TSMC in the competition for advanced foundry dominance. Currently, TSMC commands more than two-thirds of the global foundry market. If Samsung secures Qualcomm’s orders with SF2P, it could reshape the balance of power in the industry.

    Despite early setbacks with 3nm yields and supply timelines, Samsung has not retreated from the pursuit of next-generation process technologies. The transition from SF2 to SF2P reflects not only increased process maturity but also Samsung’s determination to reclaim its role at the forefront of the foundry battlefield.

    Of note, Samsung’s flagship smartphones for the past two years have relied solely on Qualcomm chipsets, while its own Exynos processors have been relegated to select regional models or mid-range devices. Compounding the challenge, Google’s upcoming Pixel 10 series—featuring the Tensor G5 processor—is reportedly being fabricated by TSMC, further underscoring market skepticism surrounding Samsung’s advanced nodes.

    Nonetheless, Samsung recently announced the Exynos 2500, a flagship SoC based on its second-generation 3nm GAA process, which is expected to power the Galaxy Z Fold7 and Galaxy Z Flip7. This move highlights the company’s ongoing semiconductor innovation and ambition to remain competitive—though widespread user acceptance remains uncertain.

    Whether Samsung’s second-generation 2nm process can win over customers like Qualcomm and seriously challenge TSMC in the realm of leading-edge fabrication remains an open question—one that the industry will be watching closely.

  • Smart TVs: The Battle for Your Privacy Rages as Manufacturers Prioritize Ads Over Viewers

    Many owners of Smart TV operating systems increasingly find themselves at the heart of a growing conflict—one that pits the preservation of viewer privacy against mounting pressure from the advertising industry. The crux of the matter lies in the shifting priorities of television manufacturers and software developers, who now seem more invested in harvesting user data and monetizing ad delivery than in advancing picture quality or enriching features.

    At the StreamTV Show conference in Denver, Takashi Nakano, Vice President of Samsung TV Plus, openly acknowledged the industry’s state of perpetual internal tension. On one side are users, determined to guard their privacy—unwilling, as Nakano quipped, to let anyone know “what they watched, or what they had for breakfast.” On the other side are advertisers, for whom such data represents a veritable goldmine.

    This extends far beyond basic viewership metrics. Operating systems now strive to discern everything about their users—from preferences to emotional states. LG, for example, recently announced that its webOS will employ an AI model designed to infer viewer tastes based on mood and personal convictions. While this allows for more precise ad targeting, it simultaneously erodes the boundaries of acceptable surveillance. Increasingly, experts are questioning whether all this data collection is truly necessary.

    According to Nakano, the deluge of collected data is often excessive. He further noted that the demands of the advertising sector have given rise to an intricate ecosystem of data relay chains—many of which, he admitted, are wholly superfluous. This not only leads to technical inefficiencies but also heightens the risk to user privacy.

    Nevertheless, companies continue to invest heavily in software. Manufacturers such as Samsung, LG, Roku, Vizio, Amazon, and even Walmart are progressively viewing operating systems as their primary profit engines. With profit margins on physical TVs dwindling, ad monetization has emerged as the beacon of growth. According to WPP Media, streaming TV advertising is projected to generate \$41.8 billion in 2025, swelling to \$71.9 billion by 2030. These revenues don’t merely enrich ad agencies—they fuel the aggressive development of embedded advertising frameworks.

    Yet this paradigm gives rise to a new dilemma. Consumers, when selecting a TV, prioritize brand reputation, image quality, and price. The firmware, user interface, and even built-in recommendations are secondary concerns. However, post-purchase, these very elements become the conduit between the user and the broader digital ecosystem. As Catherine Pond of Vizio remarked, competition between operating systems ends at the point of sale—what follows is a battle for user attention.

    At Roku, the emphasis lies in engaging the viewer as swiftly as possible. To this end, they employ recommendation engines, intuitive search features, personalization tools, and behavioral algorithms. The sooner a user begins streaming content through the native OS, the greater the likelihood they’ll remain within the brand’s carefully constructed advertising sphere.

    Meanwhile, the threat to such ecosystems is already materializing. Should TV software continue to impose intrusive ads or collect data excessively, viewers may opt for external streaming devices—such as Apple TV or third-party boxes—that offer greater autonomy and are perceived as more privacy-conscious alternatives.

    The industry thus finds itself in a vicious cycle: without data, targeted advertising falters; without advertising, profit wanes; and without trust, users vanish. If television manufacturers fail to value viewer interests as much as they do advertiser demands, they risk paying not just in revenue—but in lost loyalty.

  • Samsung Rebuts HBM3E Failure Claims, Cites Smooth Testing

    Earlier reports indicated that Samsung’s HBM3E chips encountered significant issues during NVIDIA’s verification tests, including overheating and excessive power consumption. Since last year, Samsung has been providing HBM3 and HBM3E chips to NVIDIA for verification, but they have not passed the tests.

    According to Business Korea, Samsung released a statement to the media denying the previous reports, stating that it is “smoothly conducting tests for HBM supply with various global partners“, and emphasized continuous collaboration to ensure product quality and reliability, aiming to provide the best solutions to customers.

    Samsung AMD agreement

    With the rapid growth of the artificial intelligence (AI) market, HBM technology, which significantly enhances data processing speed through vertical stacking of multiple DRAM chips, has become increasingly important. The surge in demand for HBM products has intensified the market competition among Samsung, SK Hynix, and Micron. Although Samsung has long led the DRAM market, it has been overshadowed by SK Hynix in HBM products, and Micron’s recent advancements have also posed a challenge. This has prompted significant strategic shifts within Samsung, including changes in department heads, accelerated project development, and expanded production capacity to better address competitive pressures.

    In its first-quarter financial report for 2024 released last month, Samsung announced that it began mass production of the 8-layer vertically stacked HBM3E in April and plans to start mass production of the 12-layer vertically stacked HBM3E in the second quarter, ahead of the originally planned timeline for the latter half of the year. Despite these efforts, some market analysts remain skeptical about whether Samsung can narrow the gap with SK Hynix in the short term.

  • Samsung’s HBM3E Chips Fail NVIDIA’s Heat Test, Delays Loom

    Last July, mid-August, and early October, Micron, SK Hynix, and Samsung successively provided NVIDIA with 8-layer vertically stacked HBM3E (24GB) samples. Among them, Micron and SK Hynix’s HBM3E passed NVIDIA’s verification early this year and received orders. However, Samsung’s HBM3E has not yet passed NVIDIA’s tests and requires further verification, reportedly due to TSMC’s approval process.

    Samsung AMD agreement

    According to Reuters, Samsung’s HBM3E chips encountered significant issues during NVIDIA’s verification tests, with overheating being a major problem. It is understood that Samsung has been providing HBM3 and HBM3E to NVIDIA for verification since last year, but has yet to pass, indicating that these issues have persisted for at least six months.

    Industry insiders reveal that both the 8-layer and 12-layer stacked HBM3E chips provided by Samsung have issues, leading NVIDIA to place orders only with SK Hynix or Micron for the time being. SK Hynix began supplying HBM3 to NVIDIA for the H100 as early as June 2022 and started supplying HBM3E in March 2024.

    It remains unclear whether Samsung’s HBM3 and HBM3E chips suffer from production issues, packaging-related problems, or other concerns. Compared to SK Hynix and Micron, Samsung’s development timeline has been shorter, appearing somewhat rushed. Previous reports indicated slight differences in Samsung’s HBM3E manufacturing process, affected by TSMC’s standards based on SK Hynix’s testing criteria.

    In response, Samsung officially stated that these issues pertain to custom products based on customer requirements and denied the overheating claims, asserting that testing is proceeding as planned.