Google Addresses Android Security Issue, Rolling Out a Fix Now

As expected, Google is planning to address that security issue we mentioned earlier with that good o’l Google swiftness.  The security bug exposed users’ sensitive data when on an unsecured WiFi network.


Google’s official statement:

Today we’re starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third-party access to data available in calendar and contacts. This fix requires no action from users and will roll out globally over the next few days.

Initially, the bug allowed predators to access contacts, calendar and Picasa Web albums utilizing the ClientLogin authentications protocol.  As you can see, Google has begun rolling out the server-side fix to address the Contacts and Calendar issue, however, it doesn’t address the Picasa one since it is not as vital as having your contacts and calendar exposed.  Seeing a picture of you is one thing, but knowing where you’ll be and what you’re doing at any given time is a little scary.

The auto update is being pushed out now and should be complete by weeks end.  Google’s engineers will continue to try to fix the Picasa Web Albums issue and asks for your patience.  They will roll out that update just as soon as it’s ready.  Did you receive yours already?  Let us know about it in the comments below.

[via intomobile]


About the Author: Joe Sirianni

Joe was born in New Jersey and spent most of his childhood moving around from state to state. He eventually made his way to Pennsylvania where he met his Portuguese beauty and made her his wife. He now has three great kids and full access to all of the Portuguese food he can eat. Joe's love for mobile technology began when he bought his first Palm Pilot, a Palm M130 and left it on top of his car, driving off, causing it to smash into a thousand pieces. Forced to buy a new device, he quickly discovered that specs were changing so rapidly he was buying a new device every six months just to keep up. Since then, he has constantly felt the need to have the latest and greatest. When the "smartphone" revolution began and integrating cell phones and PDA's was the norm, he quickly jumped to Windows Mobile for several years until the first Android device was launched, the T-Mobile G1. Joe began appreciating all of the free utilities Google provided and sold his soul (his precious data) to Google long before they got into the mobile OS business. So, there was no hesitation at all for him to jump on board and ride the Android train as an early adopter. And boy has it been a blast. Joe now works in the Engineering & Operations dept for a major mobile carrier where he remotely troubleshoots cell sites and loves being an Editor for TalkAndroid.


  • Andre Santos

    Are you sure the “fix” is an Android update? I think it must be something in the server side, as (unfortunately) Google have no means to update the vast majority of handsets without the carriers and manufacturers participating in the process.

    I think the “roll out” they talk about refers to the processo of updating all their servers around the world, not the handsets.

    • Joe Sirianni

      Yes Andre, I apologize, it’s a server-side issue. I have corrected the article to reflect that.

  • kooky

    Our patients? I didn’t know anybody was sick. I didn’t know you guys were doctors either.

    • Joe Sirianni

      Thanks for pointing out my brain fart kooky. This has not been my day.