Security flaw makes 99% of Android devices vulnerable, should you be worried?

July 5, 2013

Editorial Note: Talk Android may contain affiliate links on some articles. If you make a purchase through these links, we will earn a commission at no extra cost to you. Learn more.

android_trojan

If the title is correct than nearly 900 million Android devices are vulnerable to hackers who are looking to read your data, grab your passwords, or even control certain aspects of your phone. We have heard these kinds of things before and these articles seem to create more buzz about the “issue” rather than reporting about actual real life examples. Apparently this vulnerability is due to “discrepancies” on how Android apps are approved and verified. All a developer needs to do is create a trojan application and they will have access to the things I mentioned. This is according to Jeff Forristal, CTO of Bluebox, a startup mobile security company.

Could this be just a young company looking to make some press? Well I don't doubt there is an issue here, one thing we do know is that Google is aware of the problem. There were told about it back February, but when Venture Beat asked about the situation, they didn't comment. Of course that doesn't mean that Google is ignoring it. I am sure they are doing everything they can to ensure apps with trojans such as these don't make it to the Play Store, however they can't control other third party app stores. There is also the issue with the manufacturers and trying to get the latest updates on all phones, which we know isn't going to happen anytime soon.

Again, I think this is a real vulnerability, but nobody has given us an example just yet. My feeling is there has been tons of security issues over the years that haven't even been reported because companies like Google are working around the clock to protect its customers. I am not saying not to worry, but if you are using the Play Store for all your apps, chances are you are safe. The bottomline is that you should be cautious, but there is no need to panic. If you use a third party app site or third party APK's, there is always a risk for getting infected with something regarding this or some other hack, so be careful.

source: VentureBeat

Robert Nazarian Author

Robert lives in upstate New York where he was born and raised. Technology was always his passion. His first computer was a Radio Shack TRS80 Color that used a cassette tape to save programs, and his first laptop was a Toshiba T1200FB that sported a CGA greyscale screen and two 720kb floppy drives (no hardrive). From the early 90’s through late 2011, he only owned Motorola phones starting with the MircroTAC all the way through to the Droid X. He broke that streak when he bought the Galaxy Nexus. Now he's sporting a Galaxy Note 4, and absolutely loves it. He has a wonderful wife and a 6 year old son. In his free time he enjoys sports, movies, TV, working out, and trying to keep up with the rapid fast world of technology.

1 comment

hapihakr says:

July 5, 2013 at 11:10 AM

It would be much more useful for you to mention that if you turn off the setting for allowing installation from 3rd party sources, then this bug won’t affect you.

Reply