Is the s25 ultra secure from most advanced spyware like pegasus and so on?
I rely on Knox chip what’s your thought?
It depends. Many zero-day vulnerabilities used by Pegasus still haven’t been disclosed. Going further, if new vulnerabilities will be discovered, they will probably be exploitable on any android device.
From my experience Knox is indeed some kind of security. If I’m not mistaken it operates on kernel level, so it should work better as an OS agent. But I’m against Samsung in all of this. The amount of data they collect and trade with Google is terrifying and one of the many reasons why I decided against it, after so many years of using it.
Edit: Sorry for my rant there at the end, I know it doesn’t concern security, really.
As for the kernel again, I would say it prevents malware from modifying OS and allowing apps to escape sandboxes, but it won’t save you from android vulnerabilities if they have not been patched through system update.
Edit 2: I’ve been searching around, because it’s an interesting topic, and I found this: https://news.ycombinator.com/item?id=30509822
I didn’t want to say that, because it’s just my opinion, but for me it looks like Knox is just a gimmick. They say it’s super secure, that you will never get hacked. Again, in my eyes it’s an advertisement campaign mostly. It may have some security features, but history shows that they have nothing that cannot be cracked. It’s using CVE database to mitigate known vulnerabilities.
Google Pixels running GrapheneOS have been the most resistant to Cellebrite exploitation
I agree with TheDoc, if you’re really looking for a exploit-resistant phone you might want to switch to Pixel with GrapheneOS. In any case you should look for OS that has additional protection features in place. GrapheneOS has fantastic options regarding memory tampering and exploit excecution.
You should be the owner of your phone and apps, not the other way around.
2 Likes
You shouldn’t expect to be invulnerable to advanced malware like Pegasus simply by choosing the right phone, however more secure phones (such as a new Google Pixel running GrapheneOS or a new iPhone in Lockdown Mode) can be more difficult/expensive to attack.
The Google Pixel is the only recommended phone (and is currently the only device supported by GrapheneOS) because it is currently the most secure Android device around. Apparently Google Pixels running GrapheneOS have been the most resistant to Cellebrite exploitation.
If for whatever reason a Pixel or iPhone is not an option for you, Samsung is probably the next best thing. They aren’t privacy friendly but they offer the longest security update support periods and it seems to be the opinion of many that they’re essentially in third place when it comes to security features.
3 Likes
i wanted to buy the Pixel phone as my main but I avoided it due to issues of performance and battery, and I chose the most solid option since Samsung has been on the mobile industry for so long
Graphene OS forum has that leaked list of Celebrite vulnerable phones I think it was also here in this forum as well (to lazy right now to search for you). It should give you a general idea if Samsung is vulnerable to similar malwares.