Samsung has often touted Secure Folder as a highly secure enclave whose contents are safe from hacking attacks and even post-quantum cryptography — at least in the case of the Galaxy S25's AI-related data.However, new findings suggest that Samsung's Secure Folder has a massive security flaw that's very easy to exploit by following simple instructions.Reddit user lawyerz88 shared the issue last week. Here's the breakdown:Samsung's Secure Folder is based on Android's “Work Profile” feature.If a Galaxy device user creates a work profile through a third-party app (such as Island), the said profile can be used to reveal files stored in Secure Folder.Media files inside Secure Folder can be seen outside the Secure Folder environment using any app that has a media picker, such as a social media app. When choosing to upload a photo, users can select between personal and work profiles, and one of those work profiles is the Secure Folder itself.If the Secure Folder work profile is selected, the media files in Secure Folder are revealed.Thankfully, not all files are visible this way. Only media files can be revealed, but other file types will not show up.Furthermore, media files can be prevented from showing up in media pickers as long as the user encrypts the Secure Folder.To be extra safe, Galaxy device users can encrypt the Secure Folder by accessing it, tapping the three-dot menu button, and selecting “Encrypt” from the drop-down menu.However, while encrypting the Secure Folder seems to work, it also appears to just “pause” work apps, which means this system might not offer any additional security layers beyond that.According to the Reddit user who shared this insight, Samsung confirmed this is a known issue. Exactly how long Samsung knew about this vulnerability is unclear, but hopefully, the company will address it soon.The post Your Samsung Secure Folder media files aren’t as safe as you think appeared first on SamMobile.