Mohamed Hassan, a graduate of Norwich University in Britain with a major in information security and the owner of NetSec Consulting, purchased a Samsung R525 laptop. After a full system scan with anti-spy and anti-virus software, he discovered a commercial keylogger called StarLogger in his С:\Windows\SL folder.

Mohamed analyzed the system and concluded that the keylogger had been installed by the laptop manufacturer.

He exchanged (for another reason) the laptop for a Samsung R540 from another store and found the same spyware preinstalled on it.

StarLogger (developed by Willebois Consulting, prices start from $23) is a commercial keylogger that logs key presses, creates screenshots and sends the collected data by email.

Mohamed contacted Samsung’s technical support service (inquiry #2101163379) and demanded an explanation. The reaction of the support staff gradually changed from complete denial and attempts to blame Microsoft as the supplier of the entire software package to finally admitting that the company intentionally installed such programs to “monitor the performance of customers’ computers and understand how they were used”.

It looks like Samsung collects data about the use of their computers without users’ consent. Don’t forget to check yours.

Three weeks after the incident, Jason Redmond (Manager, Marketing Communications at Samsung Electronics, Samsung) reported that an internal investigation had been started to deal with the situation.