Samsung Accused of 'Standard' Keylogger Installs on PCs

Samsung is taking it on the chin after revelations that a keylogger was found by a Network World writer, on not one but two Samsung computers. Because of the placement of the files in the same location, the writer, security consultant Mohammed Hassan, says in fact that this may be something intentional that Samsung is doing.

According to Hassan, he spoke to a Samsung supervisor. That supervisor:

[...] confirmed that yes, Samsung did knowingly put this software on the laptop to, as he put it, "monitor the performance of the machine and to find out how it is being used."

This whole incident makes little sense, however. For one, the keylogger, StarLogger, is pretty old (2004). It is therefore readily detectable by antivirus software.


Most people, however, don't run a virus scan on a new computer once they receive it, believing it to be pristine. We, however, do run a virus scan upon receipt of a new computer.

Additionally, it would seem that Samsung, if they were doing this, would be setting itself up for a lawsuit. Here's Samsung's official statement on the matter:

“Samsung takes Mr. Hassan’s claims very seriously. After learning of the original post this morning on NetworkWorld.com, we launched an internal investigation into this issue. We will provide further information as soon as it is available.”

Meanwhile, Samsung users either run an antivirus scan, or check their computer for a a folder “c:\windows\SL” on their machines, which reportedly stores the StarLogger program.

Update: according to Samsung, this was a false positive in the security software that Hassan was using.  He was using VIPRE, and the folder that it detected was in fact a folder related to the Slovenian language files for Microsoft's Live app.  Samsung noted even an empty SL directory would result in a false positive by VIPRE.