United States issues steep list of demands for nuclear treaty with Iran
US wary of North Korean cyber prowess ahead of Kim-Trump summit
Samsung Galaxy J6 with Infinity Display Launch on May 21: Features, Specifications
What Is 'Google One' And Do You Need To Care?
YouTube Music, YouTube Premium launched
Are hardware makers doing enough to keep Android phones secure?
13 April 2018, 09:41 | Jodi Jackson
Pentagon creates new position to help guide software acqusition, F-35 development
The issue didn't extend to Google's devices, of course, so those with Pixel and Pixel XL, or Pixel 2 and Pixel 2 XL devices were safe, but the report claims that some OEMs, including Sony, Samsung, and Wiko had missed at least one security patch.
SRL researchers Karsten Nohl and Jakob Lell back engineered phones from Google, Samsung, HTC, Motorola, ZTE, TCL, and others checking at the source-code level to see if all the patches were present.
Google told Wired, "some of the devices SRL analyzed may not have been Android certified devices, meaning they're not held to Google's standards of security".
Several manufacturers have been pretending to stay on par with the latest updates without pushing any actual update. One of the lowest performing brands were TCL and ZTE, all of whose phones had on average over four patches that they claimed to have installed, but had not. SRL says that it had tested the firmware on around 1,200 Android phones, looking for whether or not patches had been applied, which led to it finding devices that had changed the dates forward without actually adding the patches in.
What makes it worse as Nohl points out is the fact that it is nearly impossible for the user to know which patches are actually installed.
It would seem that your brand-spanking new Android phone is not as secure as you think it might be.
As if the Android security update situation couldn't get any worse, it appears that some Android device makers have been caught lying about how secure their phones really are. On some phones, the patch gaps numbered in the dozens. The randomization helps to alter the location of a program in memory and sandboxing limits the access to the rest of the device.
That all said, it's not necessarily a disaster that your phone might not have every single last possible security patch installed, and it often takes more than one unpatched bug to leave your phone open and vulnerable to attackers.
In several cases, the chip makers were found to be the main culprits. While phones making use of Qualcomm's Snapdragon and Samsung's Exynos are less likely to miss out on patches, those running on MediaTek chipsets were found to be missing out on a lot more (9 on average). And if a company making those chips isn't keeping up with patches, it becomes quite hard for the manufacturers of the phones running them to fully secure their devices. The vendor has to primarily depend on the chipmaker to offer a security patch and not the OS.
According to SRL, missed security patches were discovered on a wide range of different handsets across manufacturers.
Patriots 7-round mock draft 1.0: When will QB be taken?
We have seen teams waste their draft picks, but we have also seen teams use their picks wisely and create a better team from them. Trades alert! In this latest mock draft for the 2018 NFL Draft , there will be multiple trades in the top five.
Backpage CEO Pleads Guilty to California Money Charges
Backpage.com has been under investigation for years for claims that the site facilitates sex trafficking on their adult ads page. The Stop Enabling Sex Traffickers Act of 2017 (S. 1693) passed both the House and Senate with overwhelming bipartisan support.