Is this a new record for hacking a flagship smartphone?

The Samsung Galaxy S22 is one of the best Android phones you can buy but it’s not without its faults as demonstrated by contestants at this year’s Pwn2Own hacking competition.

During the four-day event held in Toronto, the Korean hardware giant’s flagship smartphone was hacked by multiple contestants and two even managed to find zero-day vulnerabilities and successfully exploit them. However, on day three of Pwn2Own 2022, security researchers managed to hack the Galaxy S22 in under a minute.

As reported by BleepingComputer (opens in new tab), security researchers from Pentest Limited showed off a demo of a zero-day bug for the Galaxy S22 that used an Improper Input Validation attack to gain access to the device in just 55 seconds. Since Pwn2Own is a hacking competition sponsored by the Zero Day Initiative at Trend Micro, the security researchers were awarded five points and took home a $25,000 prize.

It’s worth noting that all of the Galaxy S22 smartphones hacked at Pwn2Own were running Android 13 with all of the latest updates from Samsung installed as part of the competition’s rules (opens in new tab). 

Samsung Galaxy S22 zero-days

security, android

(Image credit: Shutterstock)

While Pwn2Own ended with a bang with the Galaxy S22 hacked in 55 seconds, it was actually hacked on four separate occasions during the competition.

In fact, during the first day of the competition, two zero-day vulnerabilities were discovered on the device and successfully exploited by contestants. For those unfamiliar, a zero-day is a type of vulnerability that was previously unknown to a device’s creator and a patch isn’t available yet.

The STAR labs team found and exploited the first zero-day bug on the Galaxy S22 by executing an improper input validation attack which earned them $50,000 and 5 points. Another contestant named Chim found another zero-day and demoed a successful exploit to earn $25,000 and 5 points.

Should you be worried?

security, android

(Image credit: Future)

If you own a Samsung Galaxy S22 the news that your phone was hacked in under a minute might have you concerned about your device and the data stored on it. However, you shouldn’t be.

Hacking competitions like Pwn2Own are designed to give security researchers and ethical hackers an opportunity to show off their skills but they also benefit the companies whose devices are hacked. If a cybercriminal discovered the zero-days discussed above, it would be cause for concern as they could use them in attacks before Samsung has a chance to patch them. In this case though, Samsung and other vendors are well aware of what’s happening at Pwn2Own and their engineers are likely working on fixing these issues right now.

Samsung wasn’t the only device manufacturer whose products were hacked at Pwn2Own as Network Attached Storage (NAS) devices, routers, smart speakers and printers from Cisco, Netgear, Canon, Ubiquiti, Sonos, Lexmark, Synology and Western Digital were also compromised and exploited during the competition.

If you want some additional security for your Samsung Galaxy S22 though, you can always install one of the best Android antivirus apps which can spot malware online and ensure it doesn’t infect your smartphone.

TECH NEWS RELATED

Samsung Galaxy S23 Series prices unveiled: Launch to take place on February 1

Samsung is all set to launch the Galaxy S23 Series during the Unpacked Event on February 1. Ahead of the launch, various reports keep revealing details about the specs, and features of the 3 devices- Galaxy S23, Galaxy S23+, and Galaxy S23 Ultra. Now, the latest is that the ...

View more: Samsung Galaxy S23 Series prices unveiled: Launch to take place on February 1

Samsung is working on Lifelike Pixels for OLED screens

Just days before unveiling the Galaxy S23 series, Samsung applied for a trademark for a new display technology that will be used in future products. The South Korean firm’s display manufacturing arm appears to be making improvements to its already stellar OLED technology. In South Korea, Samsung has applied ...

View more: Samsung is working on Lifelike Pixels for OLED screens

Samsung, KDDI complete SLA network slicing on a live 5G SA network

In an official newsroom post, Samsung announced that it, along with KDDI, has successfully completed the demonstration of Service Level Agreements (SLA) assurance network slicing on a live 5G SA (Standalone) network in Tokyo, Japan. This is the first time in the industry that companies have generated multiple slices ...

View more: Samsung, KDDI complete SLA network slicing on a live 5G SA network

Latest Windows 11 beta brings cloud storage settings to Galaxy Book

Microsoft is rolling out two new beta builds for Windows 11 laptops and PCs, and you can install them on your Galaxy Book. Windows 11 beta build 22623.1180 is rolling out with new features, while the Windows 11 beta build 22621.1180 update brings features that are turned off by default. ...

View more: Latest Windows 11 beta brings cloud storage settings to Galaxy Book

Galaxy A52s 5G’s January 2023 update brings Maintenance Mode

Samsung has released the January 2023 security update to many smartphones and tablets. Now, the company has released a new update to the Galaxy A52s 5G as well. The latest Galaxy A52s 5G software update comes with firmware version A528BXXU1DWA4. The update comes with the January 2023 security update ...

View more: Galaxy A52s 5G’s January 2023 update brings Maintenance Mode

Carrier-locked Galaxy Z Flip grabs January 2023 security update in the US

The Galaxy Z Flip was one of the first devices to get the January 2023 security patch. However, back then, Samsung rolled out the update only to the international LTE and the 5G variants of the device. Today, the company is making the January 2023 security patch available for ...

View more: Carrier-locked Galaxy Z Flip grabs January 2023 security update in the US

Galaxy XCover Pro, XCover 5 get January 2023 security update

Samsung started rolling out the January 2023 security patch to its smartphone right from the first day of the year. So far, the company has pushed the latest security update to many Galaxy S, Galaxy Note, Galaxy M, Galaxy A, and Galaxy Z series devices. Now, Samsung has started ...

View more: Galaxy XCover Pro, XCover 5 get January 2023 security update

You can no longer use Google Voice Smart Reply on your Samsung phone

With the latest update to Google Voice, Google has removed the Smart Reply feature from the app. This feature is no longer supported on your Samsung or any other Android phone. Also, this feature isn’t available on iOS either. Google added the Smart Reply feature to Google Voice last ...

View more: You can no longer use Google Voice Smart Reply on your Samsung phone

Galaxy Z Fold 4 gets served with January 2023 security update

Galaxy M31 starts getting January 2023 security update

Check out the features of the new Bespoke 4-Door Flex with Family Hub+

Xiaomi phone with Samsung E6 OLED breaks Android display brightness record

Galaxy S20 FE gets January 2023 security update

Samsung is reportedly making OLED displays for iPad Pro, MacBook Pro

Galaxy S10 5G gets January 2023 security update

Third-party Twitter apps are now officially dead

Samsung’s new OLED screen can be folded inward and outward

Galaxy Z Flip 4 gains January 2023 security update

Daily Deal: Samsung’s most stylish flash drive gets 63% price cut

US pricing has leaked for Samsung’s Galaxy S23 series – it’s good news

OTHER TECH NEWS

Top Car News Car News