Roughly 939 million Android phones affected by a grave bug, Google won't do anything about it
According to Tod Beardsly, a security analyst with Rapid7, all Android version below Android 4.4 KitKat are suffering from a pretty serious security vulnerability, which leaves them out on a limb, susceptible to malicious hacker attacks.
It seems that the culprit for this security hole is a bug found inside Android WebView, an undividable part of Android 4.3 and lower builds, which allows you to display online content in a given app. It's works alongside numerous other core Android services, which, naturally, leaves a security breach as wide as the Grand Canyon.
This security flaw leaves roughly 939 million Android handsets vulnerable to malicious attacks, which is a pretty serious figure. Generally, one might speculate that Google will be addressing the flaw as we speak, working on an urgent hotfix. However, one would be quite wrong, unfortunately.
It seems that Mountain View is not concerned at all about the WebView security issue, declining to fix the problem, and leaving the various OEMs to cope with it themselves. Considering the fragmentation of the platform, this generally means that a lot of these might not address the issue, too.
Google uses another similar component for Android 4.4.x KitKat and 5.0 Lollipop, which means that they can't be affected by the WebView bug. Yet, these versions of the OS are not as widely-present as the older ones.
It looks like Tim Cook might have been entirely correct when he claimed that Android is a "toxic hellstew of vulnerabilities". Any thoughts?
Posts: 3160; Member since: Feb 06, 2013
posted on Jan 13, 2015, 2:47 AM 6
Posts: 534; Member since: Nov 28, 2013
posted on Jan 13, 2015, 3:39 AM 12
Posts: 348; Member since: Aug 01, 2012
posted on Jan 14, 2015, 8:55 AM 0
Posts: 6794; Member since: Mar 29, 2012
posted on Jan 13, 2015, 2:50 AM 32
Posts: 232; Member since: Oct 18, 2012
posted on Jan 13, 2015, 3:05 AM 23
Posts: 4063; Member since: Jul 23, 2013
posted on Jan 13, 2015, 4:22 AM 7
Posts: 503; Member since: Feb 28, 2014
posted on Jan 13, 2015, 3:35 AM 8
Posts: 509; Member since: Jun 30, 2012
posted on Jan 13, 2015, 3:00 AM 27
Posts: 187; Member since: Dec 17, 2014
posted on Jan 13, 2015, 3:08 AM 2
Posts: 982; Member since: Oct 23, 2012
posted on Jan 13, 2015, 7:42 AM 5
Posts: 187; Member since: Dec 17, 2014
posted on Jan 13, 2015, 3:17 AM 9
Posts: 432; Member since: Aug 20, 2013
posted on Jan 13, 2015, 3:22 AM 5
Posts: 2391; Member since: Apr 30, 2013
posted on Jan 13, 2015, 3:23 AM 6
Posts: 1442; Member since: Nov 19, 2012
posted on Jan 13, 2015, 3:31 AM 3
posted on Jan 13, 2015, 4:00 AM 10
Posts: 10457; Member since: May 14, 2012
posted on Jan 13, 2015, 4:28 AM 8
PhoneArena Comments Rules
A discussion is a place, where people can voice their opinion, no matter if it is positive, neutral or negative. However, when posting, one must stay true to the topic, and not just share some random thoughts, which are not directly related to the matter.
Things that are NOT allowed:
- Off-topic talk - you must stick to the subject of discussion
- Trolling - see a description
- Flame wars
- Offensive, hate speech - if you want to say something, say it politely
- Spam/Advertisements - these posts are deleted
- Multiple accounts - one person can have only one account
- Impersonations and offensive nicknames - these accounts get banned
Moderation is done by humans. We try to be as objective as possible and moderate with zero bias. If you think a post should be moderated - please, report it.
Have a question about the rules or why you have been moderated/limited/banned? Please, contact us.
Send a warning to post author
Send a warning to Selected user.
The user has 0 warnings currently.
Next warning will result in ban!
Ban user and delete all posts
Message to PhoneArena moderator (optional):