Samsung Android GPS phone tracking vulnerable to thieves

This location-based tracking service provided by Samsung in its Android-based smartphones is completely vulnerable to location spoofing attacks. This means that in case of phone theft, the thief can simply broadcast a fake location on Samsung’s tracking server and mislead the original phone user/owner to believe that the phone is genuinely at the fake location. The locations can be continuously falsified to random places anywhere in the world. All this happens because Samsung’s location APIs are vulnerable to manipulation by installing commonly available simple GPS location spoofers on the device.

Takeaway: Similar to spoofing of IP addresses to disguise an attacker, a simple service such as a GPS is also susceptible to tampering to have the coordinates changed using embedded malware.