Why the Skype privacy hole probably isn’t that big of a deal

There’s been a lot of buzz around the internet over the past couple of days concerning the privacy hole found in Skype for Android by Android Police. Now, let me preface what I’m about to say with this: I’m a huge fan of privacy and security. I’ve dabbled in network penetration testing and overall security, and I know what it means to stay secure. Now with that being said, let me say this:

“The privacy hole isn’t a huge deal.”

Now, I’m waiting for the flaming to commence, but hear me out. The vulnerability works by using a malicious third party app to steal information from the Skype app. That means, in order to exploit the vulnerability, you have to have downloaded a malicious app onto your phone. Sure, we’ve seen some pop up in the Market in the past, but most malicious apps come from attempting to pirate perfectly legitimate APKs.

So, kudos to Android Police for revealing the exploit, as we’re all about security and privacy, but remember – Joe Plumber probably doesn’t have too much to worry about.

Skype officially responds to security vulnerabilities in Android app

We reported yesterday that there has been a major security hole discovered in Skype for Android. The vulnerabilities make it possible for third-party malicious apps to easily access your Skype files, including your profile info.

As of late yesterday, Skype officially responded on their blog with the following:

It has been brought to our attention that, were you to install a malicious third-party application onto your Android device, then it could access the locally stored Skype for Android files.

These files include cached profile information and instant messages. We take your privacy very seriously and are working quickly to protect you from this vulnerability, including securing the file permissions on the Skype for Android application.

To protect your personal information, we advise users to take care in selecting which applications to download and install onto their device.

In other words: Yes, Skype is aware of the issue. Yes, they’re working on it. No, they don’t have a fix yet. However, with as relentless as the Android community is about their privacy (and rightfully so), you can bet that we’ll see an update with fixes soon. Be sure to keep it locked here for all the latest on this issue, and let us know what you think about it in the comments.

[via skype]

Green Sprint ID pack announced by Sprint

In keeping with the eco-friendly nature of Sprint’s latest effort, the carrier has now announced the Green Sprint ID pack. The pack of apps encourages people to be more “green”, with:

  • Live Green widget with access to a carbon footprint calculator
  • Green Now widget, with content from TreeHugger, Earth911, and GreenBiz
  • ShopGreen widget full of eco-friendly daily deals
  • iRecycle to help locate the right recycling center
  • TreeHugger.com’s Android application
  • Light Bulb Finder to help make the Green choice when replacing your light bulbs
  • Seasonal Harvest Lite to help find locally grown produce
  • eBay Green to find those Green gadgets and sustainable home products

If you have a Sprint device, you can check out this app pack as long as you have Sprint ID enabled.

What do you think of Sprint’s latest efforts? Be sure to let us know in the comments!

[via ac]

Monitor and record your travel progress with My Tracks by Google

This is an application I’ve used on and off for a while now. I am a Jeep enthusiast, and also love taking in the outdoors whenever I possible can (which, to be honest has gotten harder as of late). Anyway this app has proven a fun tool for hiking, Jeep rides, and geocaching (although I use My Tracks in conjunction with c:geo), and just plain old out of town family trips. Pretty much anything where you travel from point A to point B…to point C and D. You can track everything from your speed, to the elevation you’re at, to your current latitude and longitude, and more.

So for all you outdoor junkies, frequent travelers, this is a great way to log your travels, and even share via Google with friends. Hit the break and check out the video from Google on this app. And if you want to try out this free app fro yourself open that qr reader and shoot.

Read more

Froyo source code released for Samsung Fascinate

Could it be? Could it possibly BE!? Yes folks, you read right – Samsung has released the source code for the Fascinate. This means some killer development in the 2.2.1 world, and pretty soon, thanks to sites like xda-developers.

The released version is ED01, and it has tons of Fascinate users bouncing with joy. We personally can’t wait to see the ROMs that come out for it now. You can check out the source code yourself at the source link below and searching for SCH-I500. Be sure to let us know what you think in the comments!

[via samsung]

Vulnerabilities in Skype for Android, Personal data at risk

Unfortunately, there are those people out looking to steal our personal information every chance they get. And they are always getting better at that as well.  This cause applications to be questioned, scrutinized, and put to the test as to the quality of its security permissions. But this isn’t a a bad thing, it keeps these companies on their toes to make a quality product.

This is what has happened with Skype for Android. Android Police through creating their own app called Skypwned, has found some vulnerabilities in Skype for Android that can leave our precious devices open to attack. Hit the source for more on this issue…

[via engadget]

HTC Droid Incredible will receive Android 2.3 Gingerbread

We have good news for Droid Incredible owners. HTC has confirmed that you will receive Android 2.3 Gingerbread as noted in the following email:

Dear [Redacted]:

I understand your concern about wanting to know when the Android 2.3 upgrade will be released for the HTC Incredible. I’m pleased to inform you that there is going to be an update this summer to Android 2.3 (Gingerbread). At this time we do not have any more information about the update. When the update is released we will announce it on www.htc.com andwww.facebook.com/htc.

If you feel you need more information, you are welcome to send us another
email or you can contact the HTC Technical Support team at [Redacted] daily from 6:00AM until 1:00AM Eastern.

It would have been nice to see more of an official announcement, but we will take it. Hey, the first day of summer is only 68 days away!!

[via androidcentral]

Motorola takes on the task, Android Tablet for Enterprise

We call agree that there hasn’t ever been any real competition in this area. RIM has always been top dog when it came to enterprise management solutions. Right now, if you’re in your workplace reading this, take a look around, look over next to your laptop, or across the hall at that loud talking coworker on their mobile device. Chances are that they’ll be holding a BlackBerry.

Well as it seems, Motorola is stepping up their game in this arena. They’ve got a new tablet running Gingerbread that is being slates for beta testing. If you take a look at the graphic after the break, you’ll get a pretty good idea of what to expect from this coming device.

Read more

Gingerbread test ROM for HTC Desire leaked

We just announced the leak of Gingerbread for the HTC Evo 4G, but what about all you other users waiting for 2.3 goodness on your device? Well, if you have an HTC Desire, you’re in luck, as the 2.3 test ROM has also been leaked.

That’s right! There is a pre-rooted (watch yourself!) flashable zip of the ROM, courtesy of XDA member robocik. There are some minor changer to the UI from what we would expect, but all in all, it looks pretty darn good. Remember, flashing unofficial ROMs can be dangerous, but if you’re feeling extremely geeky, hit the source link to check it out for yourself, and let us know your thoughts in the comments.

[via xda]

Gingerbread with HTC Sense leaked for HTC Evo 4G

O. M. G. Waffles. That’s what all us Sense-loving Evo users are thinking, anyway. That’s right – Gingerbread for the HTC Evo has leaked out onto the internet, and we modders couldn’t be any happier.

As of right now, there’s nothing flashable… just a dump of the partitions. However, we’re sure that won’t last long, as it has found its way to xda, and a partition dump is exactly what most developers prefer to work with.

To check it out for yourself, be sure to hit the source link to go to the original thread, and keep it here as things develop for all the latest.

[via xda]