Samsung is pulling back the curtains on the covert operation called Project Infinity, where teams are competing relentlessly to improve the security of billions of Galaxy phones
- Project Infinity and Mobile Security Rewards Program strengthen Samsung’s security strategy
- Red, Blue and Purple teams protect Galaxy devices from cyber threats
- The CTI Task Force scours the Dark Web to prevent device breaches
Samsung has always prioritized the security of its Galaxy smartphones, and with the launch of the Galaxy S24 series, it promised seven years of unprecedented mobile security updates.
Behind this extensive protection lies a secretive and highly specialized security initiative known as Project Infinity – but Samsung has now lifted the veil and provided some details about the project.
Project Infinity consists of multiple task forces ensuring that the billions of Galaxy smartphone users worldwide are protected from the ever-growing threat of cybercrime.
The invisible guardians of Galaxy devices
The core of Project Infinity consists of three different teams, Red, Blue and Purple, in addition to a Cyber Threat Intelligence (CTI) task force. These groups operate worldwide in countries such as Vietnam, Poland and Brazil, working in the shadows to prevent and mitigate cyber attacks.
Each team has a specific role, from proactive threat detection to creating and implementing defensive measures. Their work is largely invisible to the public and only comes to light when you receive a security patch on your device.
The CTI task force specializes in identifying potential cyber threats and ensuring that hackers cannot exploit vulnerabilities in Galaxy devices. The team scours the Deep Web and Dark Web, looking for signs of illegal activity, from malware to stolen data.
By analyzing system behavior, such as unusual data requests or suspicious network traffic, the team can identify and neutralize threats while working with other departments to roll out security updates.
“From time to time, we conduct security research by simulating real-world transactions,” said Justin Choi, vice president and head of the security team, Mobile eXperience Business at Samsung Electronics.
“We are closely monitoring forums and marketplaces for mentions of zero-day or N-day exploits targeting Galaxy devices, as well as leaked information that could potentially serve as an entry point for system infiltration.”
Samsung’s security operation is modeled on military-style tactics, with the Red and Blue teams simulating attacks and defenses, respectively.
Through techniques like fuzzing, which throws random data at software, they can find hidden vulnerabilities that might otherwise go unnoticed. In the meantime, the Blue team is working tirelessly to develop and deploy patches that protect against these vulnerabilities.
The Purple team combines the expertise of both the Red and Blue teams and focuses on critical areas of Galaxy’s security infrastructure. They also work with third-party security researchers to ensure that no potential weakness goes unnoticed.