Samsung smartphones security

Browse2

Hello everyone,

I’m writing this post because I’ve been interested in Samsung devices for a long time. I’ve spent many hours looking into the topic, reading endless tech articles, product sheets, and whitepapers. At its core, the issue is that Samsung has been vulnerable to Cellebrite for years, while other manufacturers like Apple and Google are actively addressing this problem and introducing countermeasures. These measures are not perfect solutions, but they are showing results.

If we look at Cellebrite’s support matrix, we see that with Samsung devices, Cellebrite has every possible way to exploit them. It doesn’t even matter if the device is in AFU (After First Unlock) or BFU (Before First Unlock) mode. In BFU mode, Cellebrite can simply brute-force the PIN code. In AFU mode, this isn’t even necessary—Cellebrite can just bypass the lock screen using zero-day exploits.

What I found particularly shocking is that Cellebrite can brute-force Samsung devices in BFU mode, even with new models released just a few months ago. This means that Samsung practically offers no protection against these attacks. Samsung itself advertises “Knox Vault,” a secure element that is supposed to ensure all cryptographic operations are handled in a separate chip. Secure elements do work effectively—in Google’s Pixel devices, for example, we see that Cellebrite has no way of brute-forcing a Pixel 6 or newer. The same effect can be observed with Apple devices. But Samsung continues to remain vulnerable, despite having a secure element that should actually help prevent such attacks.

But that’s not my only criticism of Samsung regarding security. I also find it extremely concerning that security updates often take weeks or even months to reach end users, even when they address critical vulnerabilities. On top of that, the sheer amount of bloatware on Samsung devices is a nightmare—many preinstalled apps that nobody really needs, which only add more attack surface.

I don’t see any progress from Samsung in addressing these problems, even though there have already been many critical media reports about how forensic tools like Cellebrite have been misused to violate human rights. Overall, I think it’s a real shame that there has been no development in this area for years.

I’m curious—what’s your opinion on this? How do you see it? Feel free to comment, I’m looking forward to discussion and feedback!

n3t_admin

I don't know what led you to believe that Samsung has ever had good security. It's been all marketing BS for years, especially with their useless "Knox" branding that they slap on everything. Their software is also riddled with bugs that make exploitation very easy.

Browse2

n3t_admin Knox is a legitimate security framework with hardware-based components that prevent certain types of attacks. It’s not perfect, but it still provides more protection than having nothing at all.

Blastoidea

I can’t imagine what interests you in such insecure devices.

Plus, aren’t they stuffed full of redundant bloatware, which can’t be removed?

Browse2

Blastoidea I have a long "history" with Samsung, I have been using it since I was a child.

Rambler

Browse2 Sorry mate, but why are you even on this board?

n3t_admin

Browse2 excuse me, but the market leader of Android smartphones gets a pass for "good enough"?
My sweet summer child, they have government contracts just because of their BS certifications for Knox. That's a gigantic issue. Not even Apple came up with so much BS marketing as Samsung does for Knox.
When did we start measuring in "better than nothing" btw?

Browse2

Rambler Same question for you, why you are here?

GrouchyGrape

Browse2 ignore them. As long as you follow the forum rules (which you have), you're more than welcome here.

I too had a long history of Samsung device usage (₁₂ years) starting with the Galaxy S3. It was very weird when I finally switched to a Pixel specifically for GOS. It's a shame, because there are definitely some things I like about their phones. But as stated by n3t_admin, it's almost entirely marketing (even if there are some benefits to it).

You've seen it for yourself in your own research, they just aren't for anyone that takes security seriously.

phone-company

Again and again...
https://www.golem.de/news/pwn2own-irland-hacker-knacken-samsung-galaxy-s25-und-mehr-2510-201512.html

These existing exploits make it easy for cellebrite too

phone-company

I like Samsung too, i own a s25 edge and an ultra but in Case of security .... There is only one i'm trusting in

akc3n

Rambler

Browse2 To wake you up.

You linked a twitter thread that only has an image with a one sentence claiming an analysis exposing that manufacture. That's it. Is that supposed to be some kind of proof? Where is the report? Am I missing something? Either way, redacting your comment for:

It's against our forum rules not permitting political discussion. Their claims are very closely tied to their ideological views. It's political advocacy, not findings from actual privacy research, and therefore doesn't belong here.