Google quickly patches the '99%' Android malware hole, ball is now in phone makers court

Google quickly patches the '99%' Android malware hole, ball is now in phone makers court
Google's Gina Scigliano, the Android Communications Manager, has confirmed that "a patch has been provided to our partners - some OEMs, like Samsung, are already shipping the fix to the Android devices," for the recently discovered vulnerability that can potentially affect 900 million phones and tablets with malware.

Bluebox Security CTO Jeff Forristal said the other day that a Master Key vulnerability allows hackers to go around app verification, and install Trojans and malware apps which pass the verification process with flying colors otherwise. Google has quickly patched this now, and we are waiting on phone makers to issue their updates promptly, too.

via ZDNet

FEATURED VIDEO

31 Comments

1. KINGJUAN27

Posts: 210; Member since: Jul 02, 2012

That's what you get for being open source! Bugs, malwares and viruses! Haha :P

2. buccob

Posts: 2968; Member since: Jun 19, 2012

# of people affected by this?... # of people enjoying open source features and android overall...? stfu

5. KINGJUAN27

Posts: 210; Member since: Jul 02, 2012

Well, its a fact that Android is buggy due to being too open source, play store has a loooooot of bogus apps that contains malware. Take that, and u stfu! :D

7. SuperAndroidEvo

Posts: 4888; Member since: Apr 15, 2011

How old are you? I spoke like that when I was 12 years old. lol

15. JonBjSig

Posts: 176; Member since: Nov 17, 2011

I don't think you know what bugs are.

20. taikucing unregistered

grow up, kid. you don't even know what open source is. Oh wait, my Windows can be infected by 700,000 viruses or be hacked. Even the most advanced antivirus still can't recognized some viruses. So STFU...

21. TBomb

Posts: 1484; Member since: Dec 28, 2012

Taking this back to a level of not personally attacking anyone.... There may be a lot of apps i nthe market that are bogus.... but how often do people download bogus apps? No one just goes downloading random apps to download random apps. That's why they have a little icon for Top Developers.. because those are legitimate developers.

25. Zero0

Posts: 592; Member since: Jul 05, 2012

Laughable. Ninety-some percent of supercomputers, the majority of servers, and a whole bunch of government agencies run an "open source" OS. There's a reason, and it's not because free software has a zillion security holes; the opposite. If free software really sucked, I'd be willing to bet that OpenBSD would have way more than two security holes in its nearly 20 years of existence. As for bugs, I've had more problems with Windows 7 of late than with Arch Linux. Sound can be sporadic on Arch, but at least headphones work usually (they totally dropped on Windows... driver re-install did nothing).

30. jroc74

Posts: 6023; Member since: Dec 30, 2010

I applaud you for trying to bring logic and facts into this....but I'm afraid its all for nothing.... Ppl would be really surprised at whats goes on behind the scenes with OS's at companies. Mission critical scenarios too.

3. SuperAndroidEvo

Posts: 4888; Member since: Apr 15, 2011

That is what you are going to say..... REALLY?!? You just showed your level of education. Open Source Andriod has revolutionized the Mobile OS game. Everyone out there is emulating Android. From Apple to Windows & to even Black Berry. Open Sourcing is why Android & the Mobile game has moved forward. Plus Google fixed the problem & all is good again. Like buccob said stfu. lol +1 to buccob

4. Kurai unregistered

Being open source makes it even more faster to fix . . .

11. ihatesmartphone unregistered

lame STATEMENT DETECTED!!

12. androidfanboy

Posts: 162; Member since: Jun 24, 2013

Grow up

14. Jayzee

Posts: 22; Member since: Mar 30, 2013

THEN INSTALL AVAST FOR ANDROID ! or any other anti-virus. so YOU STFU !

17. taikucing unregistered

Windows has more than 700,000 viruses, malwares, trojans, bugs, BSOD etc. But windows isn't open source. It's not open source fault, but It's android's fault. No OS is invulnerable. But Linux is still the safest operating system of all. It defends on how you configure the OS too.

18. taikucing unregistered

enjoy your many open source apps (mozilla firefox, google chrome, PHP, Apache server, 7-Zip, etc, etc, etc.)

27. MyJobSux

Posts: 106; Member since: Apr 01, 2012

Typical response of a closed source zombie...keep drinking that coolaid...

28. jroc74

Posts: 6023; Member since: Dec 30, 2010

Then...whats Windows desktop OS excuse?

6. Googler

Posts: 813; Member since: Jun 10, 2013

So when is my Nexus 4 getting updated then?

13. Fishbowl

Posts: 23; Member since: Jun 21, 2013

It already has been. Google stealth fixed it back in february. Nexus devices should be safe.

16. Googler

Posts: 813; Member since: Jun 10, 2013

Stealth indeed, good to know. Mind you, I don't use my phone in the manner in which these bugs occur.

22. Fishbowl

Posts: 23; Member since: Jun 21, 2013

Ugh...I'm wrong. It's been fixed in the aosp database, but not in thr roms. Sorry, bad info. I can understand the delay to let manufacturers fix it, but still... bad google.

8. verbalize

Posts: 150; Member since: May 03, 2013

Lol... You guys can keep your android operating system. Thank you, That's the price for an open source operating system.

10. boosook

Posts: 1442; Member since: Nov 19, 2012

I would call it "the advantage", since similar problems exist in every OS, but if the OS is closed you simply won't know, until you get infected, of course. Now choose what you prefer. BTW, this problem affects only users that: 1) enable the option to install from external sources 2) download an apk from an untrusted source and manually install it.

26. Zero0

Posts: 592; Member since: Jul 05, 2012

This is friggin hilarious. How long was that Java exploit available on Mac OS X again? How long does Microsoft take to patch its proprietary OSes? Thought so. Free software moves quickly.

29. jroc74

Posts: 6023; Member since: Dec 30, 2010

Exactly. Its amazing how ppl are trying to talk bad about open source....and seem to all of a sudden forget about Windows desktop OS being the mother of all virus, malware, ect.

31. joey_sfb

Posts: 6794; Member since: Mar 29, 2012

I am surprise there m$ fan talking down on FOSS. US, China and Russian governments all deploy their own version of open source Linux instead of putting their trust on their beloved Microsoft Windows. I wonder why...hmm.

9. BigRed83

Posts: 144; Member since: May 19, 2008

With a closed system, while you may not get Malware or viruses, there's no innovation. While Apple maintains the 'Pinnacle' of technology, they too, have been hit. No one is immune, not even the twelve year olds in this thread. Keep the Orwellian system, give me Open Source.

32. joey_sfb

Posts: 6794; Member since: Mar 29, 2012

I disagree that there no malware and virus on closed system. I have been receiving Microsoft security patches every other weeks. They are ending their Windows XP support soon. Hope more companies will choose open source alternatives instead of being blackmail by M$ every upgrade cycle.

23. pept68

Posts: 38; Member since: Apr 05, 2013

htt p://ww w.phonearena.com/news/iPhone-more-vulnerable-than-​Android-BB-and-WP-combined_id41258 again stfu!!!

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.