Samsung's Secure Folder Flaw Exposes Private Photos: Vulnerability Allows Work Profile Apps to Bypass Security

A significant security flaw has been discovered in Samsung's Secure Folder, a feature designed to protect users' private photos, videos, files, apps, and data. According to a report highlighted by Android Authority, the vulnerability allows work profile apps to bypass the folder's security measures, potentially exposing sensitive content to unauthorized access. The issue was initially raised by a Reddit user who reported that Secure Folder contents were accessible even when locked. This contradicts Samsung's claim that the Secure Folder is protected by the defense-grade Samsung Knox security platform, which encrypts all stored data. Mishaal Rahman of Android Authority confirmed the flaw, demonstrating that apps like Shelter can create a work profile, granting access to photos and videos saved in the Secure Folder, even with biometric or passcode locks in place. The vulnerability appears to be limited to photo and video content, as the Android system file picker blocks access to other file types within the Secure Folder. This revelation raises serious concerns about the privacy and security of Samsung device users who rely on the Secure Folder to safeguard their personal information.