Discussion in 'Android Lounge' started by bonerp, May 17, 2011.
BBC News - Android handsets 'leak' personal data
Yes, read that. The vulnerability exists only when using unencrypted wifi networks (which I don't anyway).
Fixed in 2.3.4 but most companies seem to be rolling out 2.3.3. Come on Google, get the fix to the rest of us!
think this will expediate rollout of 234
omg this is bad. I emailed the bbc story link to all my colleagues. Many have android phones. Thanks for the heads up
don't forget these guys that penetration test and come up with these 'holes' really know what they are doing....
I'd worry more about loosing my phone whilst still logged onto google checkout..
It's no biggie really - no more than someone mugging you.
Just take reasonable care.
More comprehensive article ... and it's only if you are logging onto public wifi's that you are at risk
The Official Lookout Blog | Critical Android Vulnerability: Use Precaution on Public WiFi
Think I'm safe, I don't use public wifi, got my trusting data add-on in my phone contract :-D
Doesn't surprise me though, the more open we go, the more chance there is to exploit
I do have to use any wifi. I get to places where I have no phone signal at all. And TMO has wifi calling from anywhere - not just a hot spot.
But don't use half the stuff like calendar or sync it. Otherwise, I use a laptop.
Already fixed with a server side update. Google also pushing an invisible update to the phones. Your phone gets patched without you knowing it.
So how do you tell?
You can't, it's invisible
Mate, that sounds like total bullshit to me.
I stand corrected:
Google to patch Android credentials vulnerability
My apologies Guamguy.