A security researcher who has found 40 unknown zero-day vulnerabilities in Tizen says Samsung’s OS is riddled with security holes that can be exploited and may be the worst code he has ever seen. Samsung is pushing Tizen as the operating system (OS) of everything. This researcher’s findings say it is also the OS of holes everywhere.
Israeli researcher, Amihai Neiderman, has uncovered 40 unknown vulnerabilities, or zero-days, that would allow someone to remotely hack millions of newer Samsung smart TVs, smart watches, and mobile phones running Tizen OS. That is alarming, but it gets worse. Amihai is reported as saying:
“It may be the worst code I’ve ever seen. Everything you can do wrong there, they do it. You can see that nobody with any understanding of security looked at this code or wrote it. It’s like taking an undergraduate and letting him program your software.”
Malware Straight From The Appstore
One gaping nightmare he uncovered is a flaw in Tizen’s app store which “allowed him to hijack the software to deliver malicious code to his Samsung TV”. In effect, that same flaw means a hacker can deliver malware to any device – TV, smartphone, smartwatch – running Tizen OS right from the official TizenStore.
After years of delays and aimless wandering, Samsung finally launched their first Tizen smartphone in 2015. If this researcher’s observations are solid, one wonders what Samsung has spent all this time doing with Tizen.
Amihai Neiderman says he has contacted Samsung with his findings. For now, it may be a good idea for security-conscious people to stay away from Tizen smartphones. You can read the full story here: Samsung’s Android Replacement Is a Hacker’s Dream.
Discuss In The Mobile Forums
Join the discussions on this topic in the Mobility Arena mobile forums: Tizen OS is a Hacker’s Dream.