Samsung Galaxy phones have been found to have a vulnerability that makes your passwords vulnerable. There is a major security vulnerability.
If your phone is a Samsung Galaxy model, you might want to check its status because there has been a reported problem that could jeopardize the privacy of your personal information.
One tech company that is adamant about emphasizing security as the best feature of its products is Samsung, which is why it has created a comprehensive platform like Samsung Knox.
However, the South Korean brand also has disadvantages, which can occasionally be substantial, even with such strong tools. This is the case with the latest security vulnerability recently shared on its official forum.
A user identified as OicitrapDraz reported two weeks ago that he was having problems with his password manager. Specifically, KeePass, a free, open-source, cross-platform password manager that stores all credentials locally.
Far from attributing the problem to this credential storage tool, this user insisted that the problem lies with his phone's brand, because his clipboard saves credentials "in plain text, without expiration" when he copies them to access certain apps.
It's worth noting that password managers work by storing passwords in a secure database that can be accessed using a master password. Once accessed, these credentials can typically only be used once for security reasons and cannot be saved to the clipboard.
Instead, this user tried switching to the Gboard keyboard, “thinking it would help, but no, everything I copied kept getting saved to the Samsung clipboard,” he found during the process.
"It turns out the clipboard feature is fully integrated with One UI, so no matter which keyboard you're using, your clipboard history is saved in plain text," he added when reporting the issue.
Faced with such a situation, the user insisted that "there should at least be an option to automatically clear the clipboard history after a few hours," although he found a temporary solution to this problem.
“The only option is to manually delete sensitive information,” he emphasized in the post, emphasizing the seriousness of the matter: “If someone steals your phone, or even if a friend or acquaintance uses it while it is unlocked, they could browse your phone’s clipboard and see all your passwords.”
Samsung will have to make a huge effort to resolve this delicate and critical situation.