Google Rolls Out Updates for Android Security Hole

May 19, 2011 -

Responding to reports that 99.7 percent of Android-based phones suffered from a security hole that made vital personal data vulnerable to hackers, Google has released an automatic fix to deal with the problem. Google is trying to assure users that no action is needed on their part.

"Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts," said Google in a statement. "This fix requires no action from users and will roll out globally over the next few days."

The flaw was identified by Ulm University (Germany) researchers who who tested the security hole on a number of smart phones using the Android operating system. They also found that some phones sent unencrypted data, which clever hackers could "eavesdrop" on with the right tools.

"We wanted to know if it is really possible to launch an impersonation attack against Google services and started our own analysis," said researchers Bastian Könings and Jens Nickels.

"The short answer is: Yes, it is possible, and it is quite easy to do so. Further, the attack is not limited to Google Calendar and Contacts, but is theoretically feasible with all Google services using the ClientLogin authentication protocol for access to its data APIs."

Source: GameIndustry.biz


Comments

Re: Google Rolls Out Updates for Android Security Hole

Good, quick turnaround.  That's what I like to see.  Being able to rapidly fix security holes is as important a skill as preventing them in the first place -- because sooner or later, you're going to need to know how to do both.

 
Forgot your password?
Username :
Password :

Poll

Poll: Is it censorship when a private retailer decides not to sell a particular video game?:

Shout box

You're not permitted to post shouts.
Wonderkarp80% complete? Well. If there was ever a reason to make me buy a Xbone, that would be it. That and Conker05/29/2015 - 5:24pm
Matthew Wilsonif true, a very smart move.05/29/2015 - 5:24pm
Adam802Huge if true: http://www.ign.com/articles/2015/05/29/silent-hills-reportedly-an-xbox-one-exclusive?abthid=5568e08e738dff6a4f00002305/29/2015 - 5:19pm
WonderkarpRegion locking annoys me. I cant tell you how many Japanese games I want to to play but need to own another console and learn japanese to play them!05/29/2015 - 5:13pm
MattsworknameThis kinda thing is why I have a very negitive view on things like region locking and games not being released universially. it creates problems like this where the game gets reduced as a result .05/29/2015 - 4:41pm
Andrew EisenNeither will the 3DS. Wait, WHAT?! http://www.siliconera.com/2015/05/28/samurai-warriors-chronicles-3-does-not-include-nintendo-costumes-in-the-west/05/29/2015 - 4:33pm
Andrew EisenSamurai Warriors Chronicles 3 will not include the Nintendo-themed costumes when it hits the Vita in NA and EU next month.05/29/2015 - 4:32pm
Wonderkarpthe brilliance of the Wii U is they could offer 2 games in 1 package. Tablet/pro controller controls, and then a flipped game with WiiMote. Add a master quest too it too05/29/2015 - 4:18pm
Andrew EisenTwilight Princess would be my favorite if it didn't have a few notable design issues. But yeah, those few things aside, it absolutely trumps Ocarina in most every way.05/29/2015 - 4:11pm
WonderkarpTwilight Princess is my favorite Zelda. Its a legit sequal to Ocarina, enhancing everything Ocarina had, and I hope there's a HD Remaster with gamecube controls. Make it Nintendur!05/29/2015 - 4:08pm
E. Zachary KnightI borrowed Wario World, Ocarina of Time and Twilight Princess. So I am going to try to play at least one of them this weekend.05/29/2015 - 3:52pm
MattsworknameIm gonna be splittingmy time between blood borne, the witcher 3, tokiden, and some pc games.05/29/2015 - 3:34pm
DocMelonheadIn fact, if the whole campaign is to make fun of Zoe Quinn, Leigh Alexander, and Brianna Wu, then I'm not going to stop them.05/29/2015 - 2:30pm
Wonderkarp@andrew game parody idea. 50 shapes of grey05/29/2015 - 2:30pm
DocMelonheadBut I highly doubt that they encourage "death threats"; even they know that gone too far.05/29/2015 - 2:29pm
Wonderkarpi mean, i could create a a random twitter, tweet #blacklivesmatter along with terrinle racist death threats to somebody and be and youd claim the tag was a harrasment campaign by that logic. no. its a bigger issue than a random hashtag05/29/2015 - 2:28pm
DocMelonheadIf by Harass as in "Mock and Ridicule", then yes, GamerGate encourage that along with everyone else that made fun of others.05/29/2015 - 2:28pm
Andrew EisenNeed to finish Wonderful 101. Need to start Bayonetta and Pikmin 3. Yep, lots of stuff to play.05/29/2015 - 2:23pm
Andrew EisenKarp - I've been playing through New Super Mario Bros. 2. Also Shapes of Gray and OlliOlli. Really want to go back and finish Xenoblade Chronicles and Last of Us but probably won't have time for a bit.05/29/2015 - 2:22pm
Wonderkarpi never said it was "gamergates massive harrasment campaign". i mean, truth be told, crap was slung at her long before gamergate was a thing.05/29/2015 - 2:21pm
 

Be Heard - Contact Your Politician