Experts at NIST have advised users to turn off the feature.
Researchers have found a vulnerability in Samsung’s ‘Find My Mobile’ service that could be exploited to hack into devices.
By exploiting the vulnerability, hackers are able to remote lock, unlock and send commands to the device.
Researchers at the US National Institute of Standards and Technology (NIST) found out that the feature, when turned on, does not validate the lock code information it receives, and by bombarding the target device with network traffic, hackers can get access to the Galaxy smartphones.
The ‘Find My Mobile’ service is not activated by default and users have to activate it by registering on their Samsung account to remotely lock or wipe data if the phone is stolen.
The feature also enables the phone to ring in maximum volume for a minute even when it is kept in vibrate mode.
Experts are suggesting users to turn off the feature until the vulnerability are patched, which could be an OTA firmware update.