Samsung’s Secure Folder is a perfect option to keep photos, videos, files, apps, and data private. To ensure security, Samsung used Knox to protect the folder. But a Reddit user recently discovered a significant security flaw breaching the secure folder option.
Normally, the secure folder option asks users for authentication (a pin, password, or fingerprint as set by the user) to access the folder. And there is no issue with the feature under normal conditions. However, Secure Folder is not as secure as it claims.
A Reddit user, lawyerz88, observed that the security could be breached when there was an active Work Profile on the device. It can access the private space of a secure folder without any restriction.
Instead of fully encrypting the files, secure folder protection only pauses the work apps. If the encryption is not manually active every time, the private data remains visible to work apps. This means any unauthorized person can get access to your personal stuff simply by setting up a work profile.
For instance, if someone has physical access to your phone, they can use apps like Island or Shelter to create a work profile. Later, it can access the sensitive data by bypassing the security using apps with a media picker. This allows the user to select media even in the work profile space.
Reportedly, Samsung has confirmed it’s a known issue. However, no specific timeline is given as to when the fix will be available. Any latest developments on this matter will be notified; stay tuned!
