Trending today

July 29, 2014

Million Android Users vulnerable to malicious attack due to a security flaw

Source: StatCounter Global Stats – OS Market Share

Android continues to be beset by problems whenever it just seems that its  all ready to blow competition away ..
Apparently Millions of people using Android devices could be left open to attack from malicious apps that appear to come from legitimate developers, due to a flaw in Google’s mobile software. The flaw has been named “Fake ID” by security company Bluebox Labs, which discovered it.

The worse part as  globally Android’s marketshare is bigger than its nearest competitors and this  affects almost all Android phones. 

Bluebox says the vulnerability dates back to the January 2010 release of Android 2.1 and affects all devices that are not patched for “Google bug 13678484,” which was disclosed to Google and released for patching in April..The root of this vulnerability lies in what’s called a “certificate chain,” in which encrypted certificates that verify the identities of Android apps can trust each other to communicate and share data.

 However, Google says it has already issued a patch to protect Android users from attacks exploiting the flaw.