Wednesday, January 24, 2024
CertiK, a leading global entity in blockchain security, is thrilled to announce that its Skyfall research team has achieved induction into the esteemed Samsung Mobile Security Hall of Fame for the year 2023. This acknowledgment underscores the team’s unwavering dedication to advancing cybersecurity through proactive research, resulting in the identification of several confirmed vulnerabilities.
Skyfall unearthed a total of seven vulnerabilities within Samsung Blockchain Keystore, a platform designed by Samsung for managing private keys on its devices. These vulnerabilities had the potential to enable a local attacker to execute arbitrary code or access arbitrary memory. Among them, four were classified as critical severity, while three were deemed high. Samsung promptly addressed these issues through security patches, implementing proper boundary checks and protective mechanisms.
Professor Kang Li, Chief Security Officer at CertiK, expressed immense pride in the Skyfall team’s exceptional achievements, stating, “This recognition from Samsung is a testament to the team’s expertise, diligence, and profound impact on the cutting edge of cybersecurity.”
The Samsung Mobile Security Hall of Fame annually recognizes top security researchers for their noteworthy contributions to enhancing the security of Samsung’s products. CertiK’s Skyfall team being included in the 2023 Hall of Fame highlights the crucial role of collaborative efforts in addressing intricate cybersecurity challenges.
This recognition marks the culmination of a highly successful year for both CertiK and the Skyfall team. Skyfall’s discoveries included multiple vulnerabilities in iOS and iPadOS software releases, earning recognition in Apple’s security notes twice. In June, the identification and resolution of a critical vulnerability in the Sui network resulted in Skyfall being awarded a significant bug bounty.
Saturday, April 27, 2024
Saturday, April 27, 2024
Sunday, April 28, 2024
