Samsung PC users could be at risk from attacks, because the Korean company's software using a bloatware disables Windows Update.
The problem was detected by independent security researcher Patrick Barker when he realized that Windows Update, which automatically downloads patches and security fixes from Microsoft, was disabled.
The culprit proved to be a software called SWUpdate, which Samsung uses in its systems to manage the updates of its hardware drivers.
SWUpdate, in turn, runs an executable file called Disable_Windowsupdate.exe as part of its task. Guess what it does.
Στην αρχή, οι ερευνητές εξέφρασαν την ανησυχία ότι το λογισμικό μπορεί να είναι malware, αν και φαίνεται να υπογράφεται από την ίδια την Samsung. Μια κλήση στην τεχνική support of the company gave the following answer:
If you turn on Windows updates, they will install the default drivers for all the hardware on your computer, so it may work, maybe not. For example, if there is a USB 3.0 port on the laptop, the ports may not work by installing the updates. So to avoid this, the SW Update tool will prevent Windows updates.
The case highlights the chronic bloatware problem that OEMs use and comes pre-installed on computers.
This bloatware is not as scandalous as Lenovo's Superfish, but it remains a serious issue.
However, it's hard to understand the company's logic in turning off Windows Update as a good idea, given that Microsoft regularly uses it to push out critical updates for all products her.
The Korean company, of course, denied the accusations:
“It's not true that we are locking Windows updates on our computers. As part of our commitment to consumer satisfaction, we enable our users to choose whether and when they want to update Windows software on their products, ”Samsung said.
"We take our product safety very seriously and encourage any Samsung customer who has questions or concerns about something to contact us directly at 1-800-SAMSUNG FREE."