Browse archive

Latest news

CISOs need to engage with the board

Wi-Fi client security weaknesses still prevalent

Find TrueCrypt and BitLocker encrypted containers and images

Sourcefire goes beyond the sandbox

The CSO perspective on healthcare security and compliance

Jailed hacker designs device to thwart ATM card skimming

U.S. Congress has questions about Google Glass and privacy

Cyber espionage campaign uses professionally-made malware

Form-grabbing rootkit sold on underground forums

Large cyber espionage emanating from India

Over 45% of IT pros snitch on their colleagues

Thoughts on the need for anonymity

IT security jobs: What's in demand and how to meet it

Hacking charge stations for electric cars

Samsung Galaxy devices' lock screen easily bypassed

Posted on 06 March 2013.

This week revealed not one, but two security vulnerabilities that allow anyone to bypass the lock screen on a variety of Samsung Android smatphones.

On Monday UK blogger Terence Eden showed how it's possible to run apps and dial numbers on a locked Samsung Galaxy Note II phone running 4.1.2.

"This attack works against Pattern Lock, PIN, Password, and Face Unlock. There is no way to secure your phone against your home screen being accessed," he pointed out, and offered the steps for doing it because, as he said, the attack is of limited value and use, and Samsung is not replying to his emails

On Tuesday, one Sean McMillan published on the Full Disclosure mailing list simple instructions on how to completely bypass the lock screen on the Samsung Galaxy S III (also running Android 4.1.2).

"It can take quite a few attempts to get this working, sometimes this method works straight away, other times it can take more than 20 attempts," he says, and claims that he successfully tested the method on three devices.