A wide-ranging flaw affecting millions of Samsung devices has been found, and is being described as a huge vulnerability.
The flaw was discovered by the research firm NowSecure, and in a detailed report, they outlined all the information that could be taken from your device if hackers gain access using the flaw.
As many as 600 million devices could be hit by the vulnerability, and hackers could "gain access to a device's sensors, including the GPS, camera and microphone, install malware and even listen to phone calls and messages". The flaw came about as a result of Samsung's implementation of SwiftKey keyboards on its devices, but even if you use a different keyboard, there's still a chance you could be hit.
The list of devices hit includes the Galaxy S6, S5, S4, S4 Mini and SIII, while NowSecure state that other devices and models may also have been affected.
However, speaking to Mashable SwiftKey CMO Joe Braidwood stated that the risk of getting hit is relatively low: "the vulnerability in question is not easy to exploit: a user must be connected to a compromised network (such as a spoofed public Wi-Fi network), where a hacker with the right tools has specifically intended to gain access to their device. This access is then only possible if the user’s keyboard is conducting a language update at that specific time, while connected to the compromised network."
Samsung stated that they would be rolling out a security update over the next few days as a result of the vulnerability and "are also working with SwiftKey to address potential risks going forward".