- SamyGO Admin
- Posts: 3108
- Joined: Thu Oct 01, 2009 6:02 am
- Location: Istanbul, Turkey
At a meeting years ago (in Istanbul, Turkey), I told to three Samsung managers about similar "Weeping Angel" hack possibility and they need to make something to avoid it but they said "that can not be done".
And also say that they do NOT care about already sold TVs software but just busy with next series TVs software development.
That fact simply explains Samsung TV's software
After years, It looks like CIA and MI6 has something to learn from us BUT Samsung.
Wikileaks Vault 7: https://wikileaks.org/ciav7p1/
Documents about "Weeping Angel":
And this is plus that shows about how Samsung's Security modal and concerning about SamyGO
(at last header, Samsung’s Countermeasure Fixing Security Holes )
https://wikileaks.org/sony/docs/07/Docu ... 202010.pdf
Example: They kill the UEP.b by their own script. Samygo is using uepkiller.sh... Haha!
And keep in mind that they "hacked" the F-Series around 2013/14... Long after the first samygo rooting methods were published here.
My opinion is, that they copied the procedure from samygo, modifyed it a little to their own needs (faking timestamps, remove traces, etc..)
Until now i had the opinion, that those guys are more professional. Hey, its the big fat USA... Professional Hackers, which do nothing other the whole day...
The second thing, i laugh about, is that the press/media realeases articles, which say: "CIA is listening to microphones and watching the camera of samsung TV's"... but audio/video Streaming from the Camera is definetly on their "To do List"...
But the third thing... is the reaction of Samsung: Woah! In the press statements from samsung They seem to be very suprised and shocked... About the practises... And they promise to react.. and fix the vulns...
WTF??? So this reaction means that they never heard/read about samygo?
But on the other side:
It seems that govs and their contractors use the Information provided here for their own purposes.
I do not like that.
But Im not a sgo developer. Im just a stupid user in this case.
But if i would get knowledge that other govs, companies, etc. use my public code, projects, Apps for their benefits without asking me... I would do something to stop this.
Just my opinion...