Hackers are taking over Samsung’s latest Galaxy S7 phone, according to a security researcher who says he found the device’s backdoor on a hacked website.
The device’s hacky encryption was found in a website that is known to be used by hackers to steal data from smartphones.
Samsung is notifying affected Samsung users to change their passwords, according the researcher, who identified himself only as Tim.
Samsung issued a statement saying the hack was not its fault.
The hacker, who goes by the name Tim, posted a video of his hack in which he said the backdoor is located in the phone’s firmware.
Tim has said he has seen the same flaw on several Samsung devices.
Samsung declined to comment on the hack or whether the vulnerability was fixed.
Tim said the exploit works in the Galaxy S6, S6 Edge, S7 and S7 Edge.
Tim told The Associated Press he also found a similar flaw in a Galaxy S5, S5 Edge and S6.
He said he found a second backdoor in the Samsung Galaxy S3, S4, S3 Edge and later on the Galaxy Note5.
The bug affects the Galaxy Nexus, Galaxy Tab 10.1, Galaxy S2, Galaxy Note 2, Galaxy R1, Nexus 5X, Nexus 6P, Nexus 7, Note 4, Note 5 and the Note 7.
Tim also discovered a bug in Samsung’s Edge browser that allows hackers to see information about the user’s browsing history and passwords, such as email addresses.
He did not say whether the vulnerabilities were caused by the same hacking method.
The flaw is similar to one that Samsung discovered last year that allows users to take over the phone by opening the phone in a dark room.
Samsung has not issued a patch yet for the vulnerability, which is called CVE-2018-0930.
Samsung’s Galaxy S8, S8 Plus and S8 mini also have vulnerabilities in their firmware.