Google Rolls Out Updates for Android Security Hole

May 19, 2011

Responding to reports that 99.7 percent of Android-based phones suffered from a security hole that made vital personal data vulnerable to hackers, Google has released an automatic fix to deal with the problem. Google is trying to assure users that no action is needed on their part.

"Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts," said Google in a statement. "This fix requires no action from users and will roll out globally over the next few days."

The flaw was identified by Ulm University (Germany) researchers who who tested the security hole on a number of smart phones using the Android operating system. They also found that some phones sent unencrypted data, which clever hackers could "eavesdrop" on with the right tools.

"We wanted to know if it is really possible to launch an impersonation attack against Google services and started our own analysis," said researchers Bastian Könings and Jens Nickels.

"The short answer is: Yes, it is possible, and it is quite easy to do so. Further, the attack is not limited to Google Calendar and Contacts, but is theoretically feasible with all Google services using the ClientLogin authentication protocol for access to its data APIs."

Source: GameIndustry.biz

Comments

Re: Google Rolls Out Updates for Android Security Hole

Submitted by Thad on Sat, 05/21/2011 - 15:12.

Good, quick turnaround.  That's what I like to see.  Being able to rapidly fix security holes is as important a skill as preventing them in the first place -- because sooner or later, you're going to need to know how to do both.

 
Forgot your password?
Username :
Password :

Poll

Are you excited for the Xbox One?:

Shout box

You're not permitted to post shouts.
Andrew EisenWell, the Xbox One reveal certainly had an interesting affect on the big 3's stock prices. https://twitter.com/AndrewEisen/status/33705126448977100805/21/2013 - 10:45pm
PHX Corphttp://kotaku.com/so-the-xbox-one-reveal-screwed-up-a-lot-of-peoples-kin-509179256 So The Xbox One Reveal Screwed With Some People's Kinects05/21/2013 - 10:36pm
ZenOn a funny side note...both of my boys have already voted NOT to get the Xbox One as soon as they found out Minecraft won't transfer lol. Some people have priorities damnit! ;)05/21/2013 - 9:27pm
Andrew EisenHere's the full quote on EA making Wii U games according to Neogaf: http://www.neogaf.com/forum/showthread.php?t=56112105/21/2013 - 8:19pm
Andrew EisenXbox One may not be always on but that doesn't mean you can use it without an internet connection. http://kotaku.com/xbox-one-does-require-internet-connection-cant-play-o-50916410905/21/2013 - 7:39pm
Andrew EisenPolygon says EA's CFO says it is developing games for Wii U but doesn't provide that quote. http://www.polygon.com/2013/5/21/4351844/ea-developing-wii-u-games05/21/2013 - 7:11pm
Andrew EisenWell, I was right. Both Sony and Microsoft's consoles will be out by the year's end and both will be significantly more powerful than the current gen.05/21/2013 - 5:06pm
james_fudgethnx05/21/2013 - 4:47pm
ZenJust to let ya know...you called it the "Xbox 260" in the backwards compatibility article lol.05/21/2013 - 4:26pm
Zen@PHX Awesome, I will hit those up after class tonight. Going back to college finally! :) My kids have had a blast telling ME to do my homework now lol.05/21/2013 - 4:19pm
PHX Corp@Zen I sent you a friend request on both PSN and XBL, just a heads up05/21/2013 - 4:16pm
ZenI noticed it with the football players when EA showed off Madden as well.05/21/2013 - 4:11pm
ZenIs it just me or is call of duty hitting the "uncanny valley" with their nicely modeled faces and dead looking eyes? I found it distracting and seemed actually "less" real to me lol.05/21/2013 - 4:10pm
james_fudgeit sounds like if you have an HD reciever you'll be able to use it with a pass-through cable... not 100 percent sure yet05/21/2013 - 2:41pm
james_fudgehappening now http://majornelson.com/2013/05/21/xbox-one-architecture-panel/05/21/2013 - 2:20pm
E. Zachary KnightSome reading material for Microsoft on its used games blocks. That will hurt the console more than helping. http://ezknight.net/?page_id=20505/21/2013 - 2:18pm
james_fudgeyeah good luck with over the air TV05/21/2013 - 2:12pm
E. Zachary KnightBut what if I want to only watch over the air tv? I don't subscribe to pay tv. I never will. If that is a requirement, then MS wasted 45 minutes telling me how great TV will be.05/21/2013 - 2:08pm
james_fudgeEZK it will depend on your provider, just like HBO Go i'd imagine.05/21/2013 - 2:05pm
PHX Corp@IanC there's also a chance that those titles might be Xbox one exclusive, but it's too early to tell afaik05/21/2013 - 2:03pm
All shouts
 

Be Heard - Contact Your Politician