Some Android anti-virus firms have begun releasing Carrier IQ detection apps, but only after the controversial software became a talking point on Capitol Hill ... and a month after a security researcher first discovered it.
The ease and ability of Android licensees to modify the software they install on their smartphones has opened vast security holes that enable rogue apps to record calls, monitor users' locations and access sensitive data without permission, researchers say, noting that while Google and Motorola acknowledge the issues, HTC and Samsung have ignored their findings.
Researchers at North Carolina State University have uncovered a variety of vulnerabilities in the standard configurations of popular Android smartphones from Motorola, HTC, and Samsung, finding that they don't properly protect privileged permissions from untrusted applications. In a paper just published by researchers Michael Grace, Yajin Zhou, Zhi Wang, and Xuxian Jiang, the four outlined how the vulnerabilities could be used by an untrusted application to send SMS messages, record conversations, or even wipe all user data from the handset without needing the user's permission.
After struggling to gain an edge over its competitors with its BlackBerry smartphones and tablets, Research in Motion has conceded some ground to Apple and Google with the announcement of Mobile Fusion, upcoming security software for the iPhone and Android.
Waterloo, Ont.-based RIM said on Tuesday that the device management software should arrive in the late March. Though the company declined to provide a price for the application, RIM vice-president for enterprise product management did say that it will be "competitive" with rival offerings.
Antivirus experts disagree with Chris DiBona, Google's open-source programs manager, who recently said that there is no virus problem on the Android platform and that companies selling anti-malware software for mobile operating systems are "charlatans."
"Yes, virus companies are playing on your fears to try to sell you bs protection software for Android, RIM and IOS," DiBona said in a post on Google+. "They are charlatans and scammers. If you work for a company selling virus protection for Android, RIM or IOS you should be ashamed of yourself," he added.
There's been some disturbing news about Android security recently. It appears that many shipped Android-based devices are simply not getting system updates. Apart from getting righteously frustrated as consumers, we should also understand the short- and long-term effects this has on security.
Google sent the source code for its Android 4.0 system update to developers in early November, and they are now free to tinker with the system and add different features to the customizable operating system. One of those features includes hacking Android 4.0 (Ice Cream Sandwich) and building a version that can be downloaded before the official version is sent out to certain devices.
Barnes & Noble made it clear at the launch event for its Nook Tablet that it has the Amazon Kindle Fire firmly in its sights. The tablets from the two companies are pushing media sales for both, and ratcheting up the ebook wars a notch. With so much on the line, and both companies depending on selling content to make a profit, will these be the first Android tablets that get locked down from hacking?
Fitting older versions of Google's Inc popular Android software to cheaper cellphones could send the repair costs of global telecoms operators up as much as $2 billion, a study by wireless services firm WDS showed.
Costly hardware failures are more common on Android devices than on Apple Inc iPhones and Research In Motion Inc BlackBerry phones, which have strict control over the components used in their devices, WDS data showed.
Face Unlock is one of the most exciting new features for Ice Cream Sandwich but, according to a Google spokesperson, the idea that hackers could access your smartphone using a photo of your face “might work“.
Accepting Google’s claim this innovative piece of technology “will only get better”, this is still a significant setback for Android 4.0 if found to be the case. The Ice Cream Sandwich feature should only allow use of a handset when it recognises ‘real’ facial features.
