Just read this article
http://www.news.com.au/technology/gadgets/samsung-galaxy-devices-vulnerable-to-keyboard-exploit/story-fn6vihic-1227402233319
Discovered by American mobile security specialists NowSecure, the SwiftKey keyboard that comes pre-installed with a number of Samsung Android devices allows easy access for hackers to attack.
Click to expand...
Click to collapse
I was just about to buy a Samsung Galaxy S6 Edge, however there does not appear to be any ROMS that allow Original (ASOP) Android to be installed. Apparently because the CPU Samsung use.
Are stock android ROMS ever going to become available ?
My SM-G925I does not comes with Swiftkey :/ But anyway I thought if you just update the Swiftkey in Play Store, it will be fixed?
I never had swiftkey on any of my galaxy devices I guess it's just one phone provider or more likely a journalist looking for a story
Sent from my SM-G925F using Tapatalk
I believe it should be easy to fix. I cannot try because I have have Swiftkey preinstalled but I believe these are the methods you can try...
1. Update the Swiftkey to the one on Play Store.
2. Disable the Swiftkey application. I believe all non Samsung system applications and some of Samsung's system applications should be able to be disabled. Swiftkey shouldn't be a problem...
3. You are here on xda so chances you will be rooting your phone I assume? If you have root, you can just uninstall it.
tanjiajun_34 said:
I believe it should be easy to fix. I cannot try because I have have Swiftkey preinstalled but I believe these are the methods you can try...
1. Update the Swiftkey to the one on Play Store.
2. Disable the Swiftkey application. I believe all non Samsung system applications and some of Samsung's system applications should be able to be disabled. Swiftkey shouldn't be a problem...
3. You are here on xda so chances you will be rooting your phone I assume? If you have root, you can just uninstall it.
Click to expand...
Click to collapse
Totally overblown vulnerability article today on Swiftkey. Firstly I seriously doubt 600M phones have it. I just checked 8 Samsung phones from various carriers - Sprint, Verizon, US cellular - S3, S4's, S5's, Note 2 and 3's and out of those 8 only one had Swiftkey on it. Easy to uninstall or Freeze if rooted. I take this as a punch back from someone on the Apple fan club finding a minor and hard to exploit vulnerability in android since Apple just got hit big in the last week or so. If you didn't find one of the articles detailing this exploit here's the skinny: It only can be exploited if you are on Wifi and on the same Hotspot or router as a would be hacker. That hacker needs to do some fairly complex stuff to spoof a Swiftkey server and your phone has to be trying to download a language pack update. I'd say there is about a 1 in 600 million chance of that happening
iSheep will find a way to blow things out of proportion to make samsung look bad
It's actually not the SwiftKey keyboard that has the vulnerability. SwiftKey have licensed some if their prediction technology to Samsung and it is actually the stock Sammy keyboard that can be exploited.
Yes. So, If I freeze or uninstall Samsung keyboard, vulnerability should be gone, right? I don't use that keyboard anyway.
Sent from my SCH-I545 using XDA Free mobile app
Update: Samsung reached out to us to announce that it will soon patch the vulnerability through Knox. Read the full statement below:
Samsung takes emerging security threats very seriously. We are aware of the recent issue reported by several media outlets and are committed to providing the latest in mobile security. Samsung Knox has the capability to update the security policy of the phones, over-the-air, to invalidate any potential vulnerabilities caused by this issue. The security policy updates will begin rolling out in a few days. In addition to the security policy update, we are also working with SwiftKey to address potential risks going forward.
Click to expand...
Click to collapse
Click to expand...
Click to collapse
Source: Phone Arena
Hi there is already a fix posted by Samsung. You can go to lock screen security in settings then other security settings. Make sure it is on auto update.
http://www.google.com/url?q=http://...sntz=1&usg=AFQjCNFKhxsYgn6q9FoAWKdu9YpevXN_Fw
do i get this Updates with a rootet phone?
Related
So I was one of the people that watch the S4 Launch Presentation online from beginning to end. After having had my phone since it was released by AT&T, I've tried/utilized every feature available on it at least once.
However, there is one "feature" I cannot find that I remember hearing about during the presentation. It had to do with "Work". I can't remember exactly, but it had to do with the "separation" of "Work" and "Personal" Functions... I think it was related to email? I'm trying to watch the video again but does this ring a bell for anyone?
Faluzure said:
So I was one of the people that watch the S4 Launch Presentation online from beginning to end. After having had my phone since it was released by AT&T, I've tried/utilized every feature available on it at least once.
However, there is one "feature" I cannot find that I remember hearing about during the presentation. It had to do with "Work". I can't remember exactly, but it had to do with the "separation" of "Work" and "Personal" Functions... I think it was related to email? I'm trying to watch the video again but does this ring a bell for anyone?
Click to expand...
Click to collapse
Android 4.2 introduces multi-user support. S4 does come with Android 4.2.2 and as such, they made it possible to separate the, say, work/personal accounts. The presentation was talking about a case where (in a corporate environment) the IT department would be able to setup your "Work" account as per their needs/requirements/restrictions while leaving the "Personal" user account untouched - actually not even having access to it.
Hope this answers your question.
That would be Samsung's Knox product, not multi-user from android. It has been delayed from release, but has been approved by DoD for use in government.
http://www.youtube.com/watch?v=lEdK9eUBlnA
Faluzure said:
So I was one of the people that watch the S4 Launch Presentation online from beginning to end. After having had my phone since it was released by AT&T, I've tried/utilized every feature available on it at least once.
However, there is one "feature" I cannot find that I remember hearing about during the presentation. It had to do with "Work". I can't remember exactly, but it had to do with the "separation" of "Work" and "Personal" Functions... I think it was related to email? I'm trying to watch the video again but does this ring a bell for anyone?
Click to expand...
Click to collapse
nacos said:
Android 4.2 introduces multi-user support. S4 does come with Android 4.2.2 and as such, they made it possible to separate the, say, work/personal accounts. The presentation was talking about a case where (in a corporate environment) the IT department would be able to setup your "Work" account as per their needs/requirements/restrictions while leaving the "Personal" user account untouched - actually not even having access to it.
Hope this answers your question.
Click to expand...
Click to collapse
bigworm50 said:
That would be Samsung's Knox product, not multi-user from android.
http://www.youtube.com/watch?v=lEdK9eUBlnA
Click to expand...
Click to collapse
Thanks. It does. is this not available yet?
bigworm50 said:
That would be Samsung's Knox product, not multi-user from android. It has been delayed from release, but has been approved by DoD for use in government.
http://www.youtube.com/watch?v=lEdK9eUBlnA
Click to expand...
Click to collapse
Knox is Samsung's own security implementation but the multi-user support (Work/Personal accounts) used by Knox is actually built/based on Android 4.2 multi-user feature. Knox cannot be implemented on earlier versions of Android exactly due to Android's lack of multi-user support.
The multi-user support is present in all Android 4.2 versions regardless of hardware as well as Cyanogenmod 10 and up - without actually having anything to do with Samsung's Knox.
Knox was built from the ground up as platform/application security and device management. The multi-user feature is similar to android's built in feature in name only. Knox reaches all the way down to the bootloader.
Knox comes out in the summer in a future update. It seems nice but my work place doesn't use work phones.
bigworm50 said:
Knox was built from the ground up as platform/application security and device management. The multi-user feature is similar to android's built in feature in name only. Knox reaches all the way down to the bootloader.
Click to expand...
Click to collapse
This could get interesting. I would assume a Knox enabled device would have a perma locked bootloader. If Samsung were to push an update including Knox, they could theoretically lock the phone down tight like Motorola did to the Atrix line, no?
Sent from my SAMSUNG-SGH-I337 using Tapatalk 2
Researchers at Bluebox Security have revealed a disturbing flaw in Android's security model, which the group claims may affect up to 99 percent of Android devices in existence. According to Bluebox, this vulnerability has existed since Android 1.6 (Donut), which gives malicious app developers the ability to modify the code of a legitimate APK, all without breaking its cryptographic signature -- thereby allowing the installation to go unnoticed. To pull off the exploit, a rotten app developer would first need to trick an unknowing user into installing the malicious update, but hackers could theoretically gain full control of a user's phone if the "update" posed as a system file from the manufacturer.
Bluebox claims that it notified Google of the exploit in February. According to CIO, Bluebox CTO Jeff Forristal has named the Galaxy S 4 as the only device that's currently immune to the exploit -- which suggests that a security patch may already exist. Forristal further claims that Google is working on an update for its Nexus devices. In response to our inquiry, Google told us that it currently has no comment. We certainly hope that device manufacturers do the responsible thing and distribute timely security patches to resolve this issue. Absent that, you can protect yourself by installing updates through the Play Store and Android's built-in system update utility.
Source:
http://www.engadget.com/2013/07/04/bluebox-reveals-android-security-vulnerability/
They ust read this here and on an Australian news website, news.com.au, they recommend;
So what can I do about this?
- Do not allow apps from unkown sources. To do this go to Settings, Security and untick "allow unknown sources".
- Well, the news isn't good. Until further notice, news.com.au recommends that you don't download any non-Google apps.
- Bluebox has recommended that users update their operating system to the latest version.
- Also, if you have any apps which store your personal information such as credit card or PayPal information (like eBay, Amazon or Etsy), you should remove this information immediately.
- Remove any personal information from your phone (do you have your credit card pin stored in your notes? Get rid of it)
Crap advice for majority of users I feel.
Most users will have 'unknown sources' off by default but they advise not download any non Google app even from the play market as mentioned elsewhere in article.
They say to update your phone, how easy is that to do when carriers and manufacturers don't release up to date firmware for phones..
That is fine for people like us that flash new Roms all the time but for normal folk it's not a viable solution.
I don't really think the threat is so great, going by those that report such though we all had better stop using android..
I am more concerned with apps using other apps permissions/data flaw
and google play update/install protocall being not encrypted/catchable and falsifyable.
Regarding what is stated in article, this was known almost day 1 which is why from beginning android said dont install non market stuff. And it has also been known crapware has entered market.
So all in all, its an obvious article.
Sent from my GT-N7000 using Tapatalk 2
I totally agree baz77, this has been know for a very long time now. There are also quite a few apps in Play that are "crapware".
The issue has been fixed on Google's side and CyanogenMod (08/07 nightly and yesterday's security release CM10.1.1.)
Now, it is up to the OEMs to follow
I guess I got it wrong, it is a separate issue, glad the pros getting it fixed, they need to be applauded! Salute!
Sent from my GT-N7000 using Tapatalk 2
I've noticed that I seem to be missing a few updates that I expected I'd be one of the first in line for as a Nexus 4 owner.
Firstly, the Master Key vulnerability fix doesn't seem to have reached my phone. At least, according to Bluebox security scanner
Secondly, I still have no visibility of the new Google Maps redesign
My phone is a generic operator free Nexus 4 running stock (custom kernel though). Anybody else still waiting, or have I fallen off the automatic updates conveyor belt so far?
Where are you from? App updates from Google reach different parts of the world at different times.
thisisgil said:
I've noticed that I seem to be missing a few updates that I expected I'd be one of the first in line for as a Nexus 4 owner.
Firstly, the Master Key vulnerability fix doesn't seem to have reached my phone. At least, according to Bluebox security scanner
Secondly, I still have no visibility of the new Google Maps redesign
My phone is a generic operator free Nexus 4 running stock (custom kernel though). Anybody else still waiting, or have I fallen off the automatic updates conveyor belt so far?
Click to expand...
Click to collapse
We are sailing in the same boat. Rooted with only custom recovery rest stock.
vanmarek said:
Where are you from? App updates from Google reach different parts of the world at different times.
Click to expand...
Click to collapse
Based in the UK. If you've had the vulnerability patch already, did it come in the form of an app download or an ota update?
I'm in the UK and had the Maps update the day it was released.
thisisgil said:
Based in the UK. If you've had the vulnerability patch already, did it come in the form of an app download or an ota update?
Click to expand...
Click to collapse
Google hasn't released a patch for the vulnerability that's why you haven't gotten it. All they have done so far is release the code to their OEM's so they can patch their individual versions of Android. More than likely Nexus devices will get the patch in the 4.2.3 OTA whenever it gets released. In teh mean time their is an app in the Playstore, ReKey, that will address the vulnerability. Or you could just turn off install apps from unknown sources in the security settings which will also take care of the issue temporarily.
As for the other app updates they can take up to 2 weeks to deploy to all phones.
I've been an iPhone user for years but I've always wanted to move on to Android because of how much more freedom it provides compared to IOS. Jailbreaking was somewhat simple to do but Apple would be quick to patch that out and they are just so restrictive, on top of having weak hardware it was enough for me to want to move on. I've owned my Samsung Galaxy S7 Edge for a week now and I'm still getting used to this new OS and so far I'm finding the edge screen to be annoying because the way I hold the phone my skin would touch the edge and it would just make the side bar continuously pull out. Anyways I'm looking to get the most out of my new phone.
1. Is there any way for me to prevent my phone from auto updating? yesterday it said there was an update available and I didnt want to immediately rush into updating on the chance I would be missing out on rooting my device but then a couple of hours later my phone would light up and it would update all my applications as well as the firmware without my consent. As wonderful as that sounds I would prefer to make that choice myself so I dont accidentally update past a firmware where its possible to root. Even after updating is it possible to rollback at all or no? My device is now on 6.0.1 so I hope I'm not too screwed.
2. I have some preinstalled apps I am positive I will never use in my life such as Uber (I drive my own car) and Facebook (I dont have Facebook and dont plan on it anytime soon). I saw options to disable it but I would prefer if it was outright deleted so is it possible? I would like to save on the space that it takes up no matter how minuscule that may be especially on apps that are just dead weight.
My phone is Samsung Galaxy S7 Edge and my service provider is AT&T.
I'm exactly in the same boat as you, having just moved to Samsung/Android after using iphones since it's first release. It feels so great to have the freedom that comes with the S7 Edge.
I too found the edge screen to be annoying, but as soon as I bought my case ( OtterBox Commuter) that issue you describe quickly dissapeared, I beleive any case will deliver the same result, as you'd been griping the actual case and not the edge screen .
There is a way to disable your play store updates through the play store settings.
As far as firmware updates you can control these in the Settings - About options. However I don't beleive that Android updates are there to plug any capabilities of rooting Android, from my understanding as long as the baseband is unlocked, and that will depend on which version of the Edge you have then it will remain rootable regardless of any software updates pushed. However someone with more android experience is probably best to confirm this.
I'm suprised that your device came pre-installed with Uber and Facebook, I had to install them through play store and likewise am able to uninstall them. There is an app called package disabler in the app store but as the name suggests it only disables them which you say you have the option to anyway. I beleive a root will be able to fix that.
Sent from my SM-G935F using Tapatalk
first time android user
To be very honest i did hands on many android smartphone but my love to windows phone always increase respectively
. Do you really think a hard core windows lover its gonna be easy to sift at android .
On the T-Mobile version you can hit postpone when it pops up and then schedule it.
Thank you ih8un for your response. I guess I'll wait until rooting becomes available in order to delete these preinstalled apps.
Can anyone confirm if firmware updates can patch out rooting? If yes how do I disable or prevent firmware updating? I cant seem to find that option anywhere in the settings.
*You have got snapdragon version which have locked bootloader so unless samsung and at&t push out official update that unlock it, it is unlikely your device will get rooted at least not normal method.
1.It is possible but unlikely that new update can make root impossible(assume that your s7 get bootloader unlocked and root by flashing supersu) but if your device get root in special way by using exploits(like jailbreaking ios) update will patch up exploit and disable rooting.
2.Uninstall preinstall app will recover no space for user since system partition has fixed size and separate from data partition.
(Preinstall apps is in system partition. User apps and data is in data partition)
Also once your device is rooted it will list your software as custom and disable ota update.
Sent from my SM-A9000 using Tapatalk
@RemixDeluxe couple things.
Package DisablerPro even though they don't uninstall the apps such as Uber it does disable and they won't show up in your folder nor update.
To stop automatic app update go to Playstore settings and check the do not auto update box.
As far as firmware update I took the update so no biggie
Since the bootloader on the G935A ATT is locked down tight I seriously doubt there'll be a root exploit but if someone does find one if you root you won't have to worry about auto updates because the device won't be able to take the OTA.
I use a thin Speck case and Case Mate makes a good case as well and they will eliminate the incidental screen touches.
I've had the Galaxy S series of devices since the S2 and I've got to say in my humble opinion of course you won't find a finer device.
Yes I've owned several other android devices as well.
I've bought the international S7 Edge and that device is fully rootable so if you can come up with the money it's an idea to consider.
Even the Tmobile S7 Edge bootloader is locked down now so that's out of the question.
I hope I've answered some of your questions.
Feel free to hit me up if you have more.
"And on that bombshell!"
Sent from my Smokin G935A
NonXtreme said:
*You have got snapdragon version which have locked bootloader so unless samsung and at&t push out official update that unlock it, it is unlikely your device will get rooted at least not normal method.
1.It is possible but unlikely that new update can make root impossible(assume that your s7 get bootloader unlocked and root by flashing supersu) but if your device get root in special way by using exploits(like jailbreaking ios) update will patch up exploit and disable rooting.
2.Uninstall preinstall app will recover no space for user since system partition has fixed size and separate from data partition.
(Preinstall apps is in system partition. User apps and data is in data partition)
Also once your device is rooted it will list your software as custom and disable ota update.
Sent from my SM-A9000 using Tapatalk
Click to expand...
Click to collapse
I'm confused by your post, I thought rooting the phone was the equivalent to jailbreaking on IOS as in it makes the device open source but by no means is it official by the developers of the OS.
So are you saying I can only disable updates once my phone is rooted? I mean how would I stop it in the first place so I can get root to begin with? sounds like a catch 22.
s7freak said:
@RemixDeluxe couple things.
Package DisablerPro even though they don't uninstall the apps such as Uber it does disable and they won't show up in your folder nor update.
To stop automatic app update go to Playstore settings and check the do not auto update box.
As far as firmware update I took the update so no biggie
Since the bootloader on the G935A ATT is locked down tight I seriously doubt there'll be a root exploit but if someone does find one if you root you won't have to worry about auto updates because the device won't be able to take the OTA.
I use a thin Speck case and Case Mate makes a good case as well and they will eliminate the incidental screen touches.
I've had the Galaxy S series of devices since the S2 and I've got to say in my humble opinion of course you won't find a finer device.
Yes I've owned several other android devices as well.
I've bought the international S7 Edge and that device is fully rootable so if you can come up with the money it's an idea to consider.
Even the Tmobile S7 Edge bootloader is locked down now so that's out of the question.
I hope I've answered some of your questions.
Feel free to hit me up if you have more.
"And on that bombshell!"
Sent from my Smokin G935A
Click to expand...
Click to collapse
I dont care about applications updating since that doesnt affect the OS in terms of exploits but for firmware updates I want to be able to not update because I imagine Samsung or AT&T (whoever it concerns) would not want their customers to root their devices and have open souce access they arent suppose to have. Maybe I'm too used to Apple stomping out jailbreak and I should ease up with Android updates, this is all new to me so forgive my lack of understanding.
RemixDeluxe said:
I dont care about applications updating since that doesnt affect the OS in terms of exploits but for firmware updates I want to be able to not update because I imagine Samsung or AT&T (whoever it concerns) would not want their customers to root their devices and have open souce access they arent suppose to have. Maybe I'm too used to Apple stomping out jailbreak and I should ease up with Android updates, this is all new to me so forgive my lack of understanding.
Click to expand...
Click to collapse
Honestly I doubt very seriously if there will be root for the ATT, Verizon, TMO s7 edge. Just like the s6 edge or Note5. There was root for a very short period for the s6 edge but the exploit was patched very quickly. It seems devs aren't even trying to find root for ATT devices since the bootloaders are so tightly locked.
As far as updates to the OS since root isn't available there's no worry about exploits being patched.
It sucks tremendously but the major carriers are more concerned with security than anything else.
Tomorrow my ATT s7 edge is going back to the corporate store and from now on I'll be buying the international versions outright.
I've been lucky since I've had a couple other devices that I was able to sell on Swappa to offset the cost.
"And on that bombshell!"
Sent from my Smokin G935A
I really wanted to root my device, its half the fun of owning a new device and this really bums me out I may possible never get to experience that.
So am I completely screwed out of rooting or do you think there will be some workarounds in the foreseeable future?
Thanks for keeping me informed.
RemixDeluxe said:
I really wanted to root my device, its half the fun of owning a new device and this really bums me out I may possible never get to experience that.
So am I completely screwed out of rooting or do you think there will be some workarounds in the foreseeable future?
Thanks for keeping me informed.
Click to expand...
Click to collapse
Never underestimate the xda community even if it looks grim now I'm keeping a positive outlook that us variants will eventually have root. But maybe that's just wishful thinking. But there are plenty of modifications and customization options available to us without the need of root.
I have a couple of requests in regards to some applications if anyone would be generous enough to suggest anything.
1. Are there any applications to get free inapp purchases without root?
2. Anyway to stop ads in apps or while viewing youtube videos? I've tried a few adblockers but they dont seem to do much if anything at all.
3. I used this app on my iPhone called Mewseek which allowed you to download music on the fly and listen to it instantly. Is there any equivalent of that on Android?
Hi, whats the latest security patch level? I just got my phone and it is showing after the firmware update 1-Apr-2017. My company is not permitting me to access exchange due to old security patch level. What is the latest version and is there a way to force it or install it somehow? Thanks.
April 1st is the current patch level.
thanks for the response, this will be a problem for me then as our admins will require the patch to be installed in a week or 2 after being released by Google.
samitro said:
thanks for the response, this will be a problem for me then as our admins will require the patch to be installed in a week or 2 after being released by Google.
Click to expand...
Click to collapse
Your admins seem a bit clueless when it comes to updates on android phones, let alone non-pixel phones.
In most cases, the patch level will be 15 to 20 days behind on the flagships in unlocked regions with no carrier bs.
The gap widens as major upgrades loom in (ex: from 6.0 to 7.0).
The s7 was left on an old security patch for a few months until 7.0 came out with the latest ones.
Oh, and as the device becomes older, updates switch to 4 month cycles, check the samsung security website for more details on what devices are on what release cycles. Currently, this is anything older than the S6.
EDIT: Link: http://security.samsungmobile.com/introsm.html
Not so good I was looking forward to move away from my iPhone. Thanks anyway.
I purchased an S8 and found out that the security patch is outdated and is not supported by my employer
OP are you using Microsoft Intunes/Company Portal to handle your Exchange account?!
May release is already out since 25th~ of May in some (if not most by now) markets, run an update.
JaeMelo said:
OP are you using Microsoft Intunes/Company Portal to handle your Exchange account?!
Click to expand...
Click to collapse
No, my company required Airwatch MDM to access corporate email.
Skander1998 said:
May release is already out since 25th~ of May in some (if not most by now) markets, run an update.
Click to expand...
Click to collapse
My S8 is the USA unlocked version. No update till now. (Already checked)
sabaatworld said:
No, my company required Airwatch MDM to access corporate email.
My S8 is the USA unlocked version. No update till now. (Already checked)
Click to expand...
Click to collapse
Can you please screenshot your settings -> software info page?
sabaatworld said:
I purchased an S8 and found out that the security patch is outdated and is not supported by my employer
Click to expand...
Click to collapse
Your employer is an idiot if he thinks all android phones will be on the latest security patch, only the pixel is updated monthly.
Skander1998 said:
Can you please screenshot your settings -> software info page?
Click to expand...
Click to collapse
Here you go
peachpuff said:
Your employer is an idiot if he thinks all android phones will be on the latest security patch, only the pixel is updated monthly.
Click to expand...
Click to collapse
My employer doesn't require I use any specific phone, they require that the phone I use on their network be patched with the latest OS Security patch (whether Android, Apple or Microsoft). That doesn't make them an idiot, it makes them conscious about data-loss/breaches. As a consumer of technology you REALLY want that.
More employers are requiring that mobile phones have monthly security patches applied. So far only Apple and Google fit the bill. Google has even cranked up the price of their mediocre flagship because they KNOW this. All the other mobile manufacturers are just handing the business market to Apple and Google by being blind to this.
And I can verify what the OP said. I just purchased an Unlocked S8+ and the security patch level is April 1, so it's 2 months behind the Samsung promised "montly security patching".
Received a firmware update today plus security patch for June
Now you can easily hide the nav bar for immersive experience. Very nice addition.
mbashat said:
Now you can easily hide the nav bar for immersive experience. Very nice addition.
Click to expand...
Click to collapse
It's a very welcome edition and saves messing around with adb commands to get the full immersive experience, shame though that you cannot enable or disable it yet on a per app basis.
daleski75 said:
It's a very welcome edition and saves messing around with adb commands to get the full immersive experience, shame though that you cannot enable or disable it yet on a per app basis.
Click to expand...
Click to collapse
I have checked and the good news is that you do have the option to select which apps run in full screen mode. Not all apps are supported though.
To do this select Settings>Display>Full Screen Apps.
mbashat said:
I have checked and the good news is that you do have the option to select which apps run in full screen mode. Not all apps are supported though.
To do this select Settings>Display>Full Screen Apps.
Click to expand...
Click to collapse
Thats something else and only means the app is filled to the 18.5:9 screen ratio. That was there since launch of the S8(+)
my last was april... shame Samsung...