Google is rolling out a fix for Android's Wi-Fi vulnerability

Google is rolling out a fix for Android's Wi-Fi vulnerability
Researchers at a German university recently confirmed a serious vulnerability within the Android OS, that was initially exposed by Dan Wallach. When connected to an open Wi-Fi network, other users can impersonate your device to Google Calendar and Google Contacts. And they found that the problem is theoretically feasible within all Google applications.

But Google has already announced a solution: "Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts...This fix requires no action from users and will roll out globally over the next few days."

Android Honeycomb and Gingerbread both already include solutions to the vulnerability, but the majority of Android devices (99.7%) are still running the older builds.

While Apple and their devotees would surely love to blow this out of proportion, we have to keep in mind that open Wi-Fi has always been a security risk. If you ask any IT professional, they'll tell you to stick with secured networks whenever possible. But that's not the point. Between LocationGate and the recent PSN scandal, consumers are feeling particularly sensitive about their privacy.

source: Wall Street Journal



1. Sniggly

Posts: 7305; Member since: Dec 05, 2009

Well holy shit. How long did that take? 24 hours? Maybe a little more? Without any finger pointing, any "Apple does it too!", any "Use your phone correctly." Taco, THIS is exactly why I don't freak if there's an issue with Android. See the difference?

4. protozeloz

Posts: 5396; Member since: Sep 16, 2010

this is what I think people overdo when they believe open sourced projects are easier to exploit took around 2-3 years before someone found the issue, new version had the issue fixed and they manage to get a workaround so that earlier versions don't get affected by it in less than a week, wonder how they did it. some say its some fix on their servers others is a similar fix to the one done to the ones that got hacked

12. Sniggly

Posts: 7305; Member since: Dec 05, 2009

Oh, what's this? Some iFanboy didn't like what I or Proto said, apparently. Well, you can suck it anyway! Google responds to issues better than Apple!

13. Lucas777

Posts: 2137; Member since: Jan 06, 2011

not at all.. u realise this is a completely different issue correct? do not understand the fact that ios has already fixed the location issue and google still hasnt come up with a solution, and when they do, it wont get to all phones for a year at best?

14. Sniggly

Posts: 7305; Member since: Dec 05, 2009

Excuse me? On the location tracking, all Apple's fix did made their tracking on par with Google's. Google doesn't need a fix for location tracking. Furthermore, these issues ARE similar. They were both gaping security holes. Do you know anything, Lucas? Were you born in an iLab?

15. Lucas777

Posts: 2137; Member since: Jan 06, 2011

they are very different actually... this is not an operating system problem that needs a system update... this is something that can be fixed on their servers.. and explain to me what an ilab is? and i hope u realize by now that i dont even have an iphone... oh and is google's tracking somehow better then ios's... does it track better or something that it doesnt need a dfix? and apple did fix theirs... it does not cache it anymore... oh wait, maybe u will completely change the subject telling me i was sj's child or something in order to take focus off of ur incorrectness...

17. Sniggly

Posts: 7305; Member since: Dec 05, 2009

Okayy, let me break it down like a fraction for you. Google scrambles the location data that is sent to it and only keeps about a week long cache on your phone. You can only get to it if you root it. And even then it's hard to find. All Apple's fix did was give its software about the same characteristics (scrambled, small cache, hard to find). Whatever phone you use, you obviously still have an iphone stuck up your ass from all the support you give Apple vs Android. I have yet to see you say a positive thing about Android at Apple's expense. That wasn't meant to be an actual argument, just speculation tacked onto the end of a comment because I thought it would be amusing. But since you made it an issue, it's an issue. Congratulations. And though the location of the problem is different, it was still a software problem for both OSes. And the comparison still works because Google still very easily could have started out with whiny childishness. But they didn't. In a day they came out and said "There. Problem solved. Thanks for the feedback."

25. Lucas777

Posts: 2137; Member since: Jan 06, 2011

yes actually i have said many things that android has... they just arent stuff that i think is as important is stuff other oses have...

26. khangster

Posts: 6; Member since: Apr 18, 2010

@Lucas: Dear sir, tracking location has never been an issue with Android. Google DOES ask our permission right when we turn on the phone the first time and every we turn on tracking location using bts while steve jobs sneaking behind your back.

16. vantenkiest

Posts: 316; Member since: Apr 20, 2011

Sniggly Lucas.. Kiss and make up already.. you guys battle it out all the time.. CHILL THE @#$(* OUT

18. Sniggly

Posts: 7305; Member since: Dec 05, 2009

Dude, take it easy. Between Lucas, Gemini, Hawk, and Taco, I have almost all of my Internet arguing fun quota filled each day. It's even more fun than poking fun at young earth creationists. :)

24. Lucas777

Posts: 2137; Member since: Jan 06, 2011

ya dude its fun to argue...

2. protozeloz

Posts: 5396; Member since: Sep 16, 2010

and there goes the Google death star firring its lazor to wipe out issues, good for android users

3. skymitch89

Posts: 1453; Member since: Nov 05, 2010

I have never heard about the WiFi problem with Android phones. Luckily I've only had my phone connected to two or three WiFi networks that are open, but not for very long (10-30min with few other people connected.

5. ATTCallCenter unregistered

I'm having a bad day

6. nb2six

Posts: 298; Member since: Apr 27, 2011

turn that frown upside down from :( to :)

7. protozeloz

Posts: 5396; Member since: Sep 16, 2010

why? this is good news isn't it?

8. ATTCallCenter unregistered

This is good news lol, i'm just bored cranky and hate my job.

9. protozeloz

Posts: 5396; Member since: Sep 16, 2010

meh I guess everyone hates their job, specially when they are related with dealing with customers, its hard to... specially when they are dumb and believe you are the dumb one...

10. Whateverman

Posts: 3295; Member since: May 17, 2009

Be careful! Last time I expresses empathy for customer service reps in here, I was lectured about third world countries and sweat shops. And told how easy my job was and I should just be grateful to have one.

11. protozeloz

Posts: 5396; Member since: Sep 16, 2010

next time tell them if they are going to talk shit about how hard your job is then tell them to go and experience a 3rd world countries jobs themselves so they have bragging rights, yeah you might be grateful to have a job at all but that doesn't mean that you have to take crap from other people, Customer support may not be a physical demanding job but is a frustrating mental job, people believe you have the answers to all their questions and when you don't they nag about how bad the company is and how much of an ass you are. then again have they actually took customer support on a 3rd world country? its nearly unresistant, 2 months ago Claro (not my network gladly) messed their towers up and 3 whole zoned got stuck with no service and by no service I mean no cable no phone, not even landlines or internet worked for them and you know what they got? nothing not even a public apology or even an explanation and thats just the tip of an iceberg... so yeah according to THEIR argument people should be thankfully they have fairly good customer support on USA

19. messiah

Posts: 438; Member since: Feb 19, 2010

You work for Apple, too?

21. Android Applications Developme unregistered

Android OS is in a big problem and this is basically with Android 2.3.3 that password gets hacked.The only solution to this is stop using public Wi-FI — coffee shops, book stores, etc to prevent this hacking.

23. protozeloz

Posts: 5396; Member since: Sep 16, 2010

are you a bot by any chance?

22. Sniggly

Posts: 7305; Member since: Dec 05, 2009

Yay. You don't know what you're talking about.

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit for samples and additional information.
FCC OKs Cingular's purchase of AT&T Wireless