Samsung promised an unprecedented seven years of mobile security updates, continuing its longstanding commitment to security for its Galaxy smartphones with the introduction of the Galaxy S24 series. The South Korean consumer electronics giant has now removed the curtain and revealed some information about “Project Infinity,” a highly specialised and covert security initiative that underpins this increased protection.
“Project Infinity” is made up of several task forces that make sure the billions of Galaxy smartphone users around the world are safe from the ever-increasing threat of cybercrime.
A Cyber Threat Intelligence (CTI) taskforce and three separate teams—Red, Blue, and Purple—are at the centre of Project Infinity. These organisations work in secret to stop and lessen cyberattacks, operating throughout the world in nations like Brazil, Poland, and Vietnam.
From proactive threat detection to developing and implementing defensive measures, each team has a distinct role. The public is largely unaware of their work; it only becomes apparent when the user’s device receives a security patch.
By spotting possible cyber threats, the CTI task force makes sure that hackers can’t take advantage of weaknesses in Galaxy devices. In search of evidence of illegal activity, such as malware or stolen data, the team searches the Deep Web and Dark Web.
The team can detect and eliminate threats while working with other departments to implement security updates by examining system behaviours, such as odd data requests or suspicious network traffic.
“Occasionally, we engage in security research by simulating real-world transactions. We closely monitor forums and marketplaces for mentions of zero-day or N-day exploits targeting Galaxy devices, as well as any leaked intelligence that could potentially serve as an entry point for system infiltration,” Justin Choi, Vice President and Head of the Security Team, Mobile eXperience Business at Samsung Electronics said, as reported by TechRadar.
The Red and Blue teams at Samsung’s security operation mimic attacks and defences, respectively, to emulate military-style strategies. Through techniques like “fuzzing,” which involves throwing random data at software, these professionals can find hidden vulnerabilities that might otherwise go unnoticed. The Blue team, on the other hand, works tirelessly to develop and implement patches that protect against these vulnerabilities.
The Purple team combines the expertise of both Red and Blue teams, focusing on critical areas of Galaxy’s security infrastructure. They also work with external security researchers to ensure no potential weak spot goes unnoticed.