Patch Gap - Gap between patching claims and the actual patches installed on a device.
SnoopSnitch - App that will let users check their phone's code for the actual state of its security updates.
Researchers found what they call a "patch gap": In many cases, certain vendors' phones would tell users that they had all of Android's security patches up to a certain date, while in reality missing as many as a dozen patches from that period—leaving phones vulnerable to a broad collection of known hacking techniques.
Researcher found Android phone vendors tell users their Device's firmware is fully up to date, even while they've secretly skipped patches.Sometimes these guys just change the date without installing any patches
Here is some good news - Hacking Android phones by exploiting their missing patches is far harder than it sounds. Even Android phones that don't have solid patching records still benefit from Android's broader security measures
https://www.wired.com/story/android-phones-hide-missed-security-updates-from-you/
SnoopSnitch - App that will let users check their phone's code for the actual state of its security updates.
Researchers found what they call a "patch gap": In many cases, certain vendors' phones would tell users that they had all of Android's security patches up to a certain date, while in reality missing as many as a dozen patches from that period—leaving phones vulnerable to a broad collection of known hacking techniques.
Researcher found Android phone vendors tell users their Device's firmware is fully up to date, even while they've secretly skipped patches.Sometimes these guys just change the date without installing any patches
Here is some good news - Hacking Android phones by exploiting their missing patches is far harder than it sounds. Even Android phones that don't have solid patching records still benefit from Android's broader security measures
https://www.wired.com/story/android-phones-hide-missed-security-updates-from-you/
No comments:
Post a Comment