Anyone have Samsung computer? Check for keyloggers - HotUKDeals
We use cookie files to improve site functionality and personalisation. By continuing to use HUKD, you accept our cookie and privacy policy.
Get the HUKD app free at Google Play

Search Error

An error occurred when searching, please try again!

Login / Sign UpSubmit

Anyone have Samsung computer? Check for keyloggers

Some_Bloke Avatar
5y, 8m agoPosted 5 years, 8 months ago
While setting up a new Samsung R525 laptop in early February 2011, Mohamed Hassan, came across an issue.

He installed licensed commercial security software and then ran a full system scan before installing any other software.

The scan found two instances of a commercial keylogger called StarLogger installed on the brand new laptop. Files associated with the keylogger were found in a c:\windows\SL directory.

It looks like this was installed by Samsung.

Check out the full story here:

http://www.networkworld.com/newsletters/sec/2011/032811sec2.html?page=1

Nasty.
Tags:
Other Links From Samsung:
Some_Bloke Avatar
5y, 8m agoPosted 5 years, 8 months ago
Options

All Comments

(24) Jump to unreadPost a comment
Comments/page:
#2
Wow. Absolutely dreadful beahaviour!!!
banned 1 Like #3
"This key logger is completely undetectable" and he found it with "have used the tool that discovered it for six years now" :|
#4
I wouldn't be surprised if the place he bought the laptop from had installed the key logger prior to sale, that is more likely than Samsung doing it.
#5
Had a little look on my netbook and as yet no sign...

Will do a deep search tomorrow during the day whilst at school...
#6
whatsThePoint
"This key logger is completely undetectable" and he found it with "have used the tool that discovered it for six years now" :|


exactly how did he discover it then...... 6 years out of date

lucky i dont buy any Samsung products ;)


Edited By: MR1123 on Mar 30, 2011 23:09
#7
rwm24
I wouldn't be surprised if the place he bought the laptop from had installed the key logger prior to sale, that is more likely than Samsung doing it.


He found it on two samsung laptops and was told by samsung themselves that they put it on...

Apart from that your theory is perfect :)
#8
anyone see which software he used to detect ?
1 Like #9
I'll run recuva on it tomorrow to find the b*****d :p
#10
i guess he means undetectable in normal use
#11
tomwatts
I'll run recuva on it tomorrow to find the b*****d :p


lol
#12
rwm24
I wouldn't be surprised if the place he bought the laptop from had installed the key logger prior to sale, that is more likely than Samsung doing it.

http://www.networkworld.com/newsletters/sec/2011/040411sec1.html
#13
I imagine it's probably http://www.gmer.net/
#14
oldmanhouse
Someone probably bought the laptop, installed the keylogger and returned it. If done on a mass scale (if it was a criminal gang, rather than one individual) I suppose it could prove quite profitable. Would never suspect it myself but the first thing I do is install anti-virus so it would have been picked up before I got around to browsing the internet.


samsung admitted they installed it
#15
oldmanhouse
Someone probably bought the laptop, installed the keylogger and returned it. If done on a mass scale (if it was a criminal gang, rather than one individual) I suppose it could prove quite profitable. Would never suspect it myself but the first thing I do is install anti-virus so it would have been picked up before I got around to browsing the internet.

In the first part of this two-part report, MSIA 2009 graduate Mohamed Hassan told of discovering a keylogger on two different models of Samsung portable computers. Today he continues the story. Everything that follows is Mr Hassan's own work with minor edits.

* * *

On March 1, 2011, I called and logged incident 2101163379 with Samsung Support (SS). First, as Sony BMG did six years ago, the SS personnel denied the presence of such software on its laptops. After having been informed of the two models where the software was found and the location, SS changed its story by referring the author to Microsoft since "all Samsung did was to manufacture the hardware." When told that did not make sense, SS personnel relented and escalated the incident to one of the support supervisors.

The supervisor who spoke with me was not sure how this software ended up in the new laptop thus put me on hold. He confirmed that yes, Samsung did knowingly put this software on the laptop to, as he put it, "monitor the performance of the machine and to find out how it is being used."

In other words, Samsung wanted to gather usage data without obtaining consent from laptop owners.

While in the Sony BMG security incident described in the first article in this pair one had to buy and install the CD on one's computer, Samsung has gone one step further by actually preinstalling the monitoring software on its brand laptops. This is a déjà vu security incident with far reaching potential consequences. In the words of the of former FTC chairman Deborah Platt Majoras, "Installations of secret software that create security risks are intrusive and unlawful." (FTC, 2007).

Samsung's conduct may be illegal; even if it is eventually ruled legal by the courts, the issue has legal, ethical, and privacy implications for both the businesses and individuals who may purchase and use Samsung laptops. Samsung could also be liable should the vast amount of information collected through StarLogger fall into the wrong hands.

[Mich Kabay adds:]

We contacted three public relations officers for Samsung for comment about this issue and gave them a week to send us their comments. No one from the company replied.

Good luck, Samsung! We see a class-action lawsuit in your future….
#16
a new Samsung computer laptop


one assumes from the article it's a new retail unit so wouldnt have been touched by anyone other than Samsung

Edited By: numptyj on Mar 30, 2011 23:22
#17
MR1123
oldmanhouse
Someone probably bought the laptop, installed the keylogger and returned it. If done on a mass scale (if it was a criminal gang, rather than one individual) I suppose it could prove quite profitable. Would never suspect it myself but the first thing I do is install anti-virus so it would have been picked up before I got around to browsing the internet.


samsung admitted they installed it


Whoops, should really read the article first. Hope Samsung get punished for it.
banned#18
rwm24
I wouldn't be surprised if the place he bought the laptop from had installed the key logger prior to sale, that is more likely than Samsung doing it.


2 different retailers and samsung admitting they did install it isn't enough for you to believe they did?
#19
Update:

More info here, including a "How to detect and remove" (scroll some way down)

https://nodpi.org/forum/index.php/topic,3687.msg35553/topicseen.html#msg35553

You'd have thought Sony's very public and very costly embarrassment, over handing out rootkits on audio CDs would have been enough to put companies, with even a moderate amount of integrity, off pulling this kind of stunt.
#20
Sounds like a load of rubbish, nobody has detected, nobody from samsung has said anything except whispers, they haven't admitted its the author saying a source at Samsung or something else unbelieveable, a source at Sony said PS3's have butter inside is the same sort of thing.

by the sounds of it he's just searched with Spyware Dr and found something and it may not even be a keylogger

This is just someone looking for publicity,
#21
Interesting... Looks like I'll be doing the clean install on my Q330 after all, been putting it off due to laziness.
#23
uuummm
Mohamed Hassan, MSIA, CISSP, CISA

gonna have to change his name to dodge this one i think
#24
Storm in a tea cup.

Here's a proper report on this incident

Post a Comment

You don't need an account to leave a comment. Just enter your email address. We'll keep it private.

...OR log in with your social account

...OR comment using your social account

Thanks for your comment! Keep it up!
We just need to have a quick look and it will be live soon.
The community is happy to hear your opinion! Keep contributing!