IT

Some Android Smartphone Manufacturers Hiding Missed Security Updates

13/04/2018
iPhone X Style Navigation Gestures may arrive in Android P

It further argued that modern Android phones come with security features that make them hard to hack even when they do have unpatched security vulnerabilities. And as vendors chalk up security points for non-existent patches, end users are left with a false sense of security. For J5 customers, those who checked the status of their devices' security were aware of which patches were installed and which were not. But while manufacturers may install some of the fixes, changing the security update date to the latest available in the process, they can fail to install all of the patches bundled in any particular month's update.

The patch gaps and bugs are found in the chips rather than in its operating system.

Android phone makers could also potentially "miss a patch or two by accident", according to SRL's Karsten Nohl.

As per Nohl and Lell most of the companies are either not rolling out the updates on time, or are simply lying regarding the fact that a latest security update has been installed.

The research spanned every Android security patch released in 2017, and utilised 1,200 different makes of device, including items from major manufacturers such as Samsung, Motorola and HTC, as well as Google's own devices.

Device fragmentation has always been a challenge for Google when releasing updates for its Android platform, which is by far and away the most popular mobile software on the planet. While the smartphones of Sony and Samsung were found to have missed few patches, ZTE and TCL lied about 4 or more updates. More disturbingly, they found out that manufacturers also tell users that their phone's firmware is fully up to date, even while they've skipped patches. The vendor has to primarily depend on the chipmaker to offer a security patch and not the OS. Typically, the phones with MediaTek processor were missing on 9.7 security patches which look to be a grave concern and needs to be looked into.

To sum up the findings, vendors such as Google, Sony, Samsung, Wiki on an average missed between 0-1 patches. On many occasions, it was found that the OEMs were hiding as many as a dozen missed patches. In order to help users tackle the problem, SRL Labs will be releasing an update to its SnoopSnitch Android app that allows users to check their phone's code for the actual state of its security updates.

Google's Android product security lead, Scott Roberts, said: "We're working with [SRL] to improve their detection mechanisms to account for situations where a device uses an alternate security update instead of the Google-suggested security update". Built-in platform protections, such as application sandboxing, and security services, such as Google Play Protect, are just as important. "Owing to this complexity, a few missing patches are usually not enough for a hacker to remotely compromise an Android device", the researchers wrote. Google says that some of the devices in the study may not have been Android certified devices, which means that Google's standards of security would not apply to them.

Related News:

  • Siegfried Returns with His Bloody Big Sword in SoulCalibur VI

    Siegfried Returns with His Bloody Big Sword in SoulCalibur VI

    Siegfried is a knight who sallies into battle with a comically-oversized zweihander , a German two-handed sword. Siegfried from the original Soul Edge will be available as a playable character today in Soul Calibur 6 .
    Trump on Syria attack: 'Very soon or not so soon at all!'

    Trump on Syria attack: 'Very soon or not so soon at all!'

    Trump on Wednesday had warned Russian Federation to "get ready" for a missile attack on its ally Syria. In a tweet on Sunday, Trump said those deemed responsible should expect to pay a "big price".
    Yo-kai Watch 4 announced for Switch in Japan

    Yo-kai Watch 4 announced for Switch in Japan

    Each battle will become tougher than the last as debuffs stack, but new gear can be obtained by successfully conquering trials. The Nintendo Switch got a great flow of games throughout 2017 and it seems like the flow is going to continue through 2018.
  • Comedy Central's 'Broad City' to end after upcoming fifth season

    Comedy Central's 'Broad City' to end after upcoming fifth season

    As they said in their statement, Glazer and Jacobson will continue to develop more content for Comedy Central . It's created by former Obama speechwriter David Litt, and Jacobson and Glazer are executive producing.
    Get the Ring Wi-Fi Enabled Video Doorbell for just $100

    Get the Ring Wi-Fi Enabled Video Doorbell for just $100

    Blink , another recent Amazon acquisition , offers similar indoor and outdoor camera products to those in Ring's lineup. Amazon announced today that it has completed its purchase of video doorbell and security camera maker Ring.
    'Heartbreak' as Irish Overtones singer Timmy Matley dies aged 36

    'Heartbreak' as Irish Overtones singer Timmy Matley dies aged 36

    Mr Matley had been due to take part in a charity skydive on May 3 for the The Royal Marsden Cancer Charity . Our thoughts and prayers are with his mom Geraldine and sister Audrey at this heartbreaking time.
  • Commonwealth Games: England lose tense women's hockey semi-final against New Zealand

    Commonwealth Games: England lose tense women's hockey semi-final against New Zealand

    Anish had scored 286 in stage 1 and 294 in stage 2 qualifying, while Neeraj had the scores of 291 in stage 1 and 288 in stage 2. Anish Bhanwala won gold in the men's 25m rapid fire pistol and fired a new meet record in the Commonwealth Games .
    Spring storms for the weekend

    Spring storms for the weekend

    The setup with this particular storm will be a bit different from the storm system that impacted our region last Friday evening. A handsome Thursday for us as temperatures have climbed into the low 80s this afternoon under abundant sunshine.
    Commonwealth Games: Athletes sent home for alleged drug use

    Commonwealth Games: Athletes sent home for alleged drug use

    Police have charged the former athlete with one count of assault occasioning bodily harm and one count of common assault. At the 2006 Commonwealth Games in Melbourne, 26 athletes and officials sought asylum in Australia .
  • Brace yourself, something called

    Brace yourself, something called "high definition vinyl" is coming

    Cutting lathes and nickel-plated stampers to press vinyl are outdated and HD Vinyl will use lasers to etch a better "stamper". The new fundings comes after the Austrain startup Rebeat Innovation filed the initial patent for HD vinyl back in 2016 .
    Will Kevin Spacey Face Criminal Charges For Sexual Assault In Hollywood?

    Will Kevin Spacey Face Criminal Charges For Sexual Assault In Hollywood?

    Netflix fired Spacey from his starring role in " House of Cards " and canceled a Gore Vidal biopic in which he was set to star. Rapp said Spacey, then 26, invited him to a party at his apartment and drunkenly tried to seduce him.
    PTI MNA quits party, joins PML-N

    PTI MNA quits party, joins PML-N

    Obviously, PTI party accused supporters of rival Nawaz Sharif's Pakistan Muslim League (PML-N) of circulating this offensive photograph.


Most liked

65th National Awards: Sridevi wins for 'Mom', regional cinema scores big
Though there is no one from the Malayalam film industry on the panel, Mollywood is hopeful of bagging some key awards this year. Sridevi with Boney Kapoor and AR Rahman during a promotional of the Mom in Chennai a year ago ; PTI Photo by R Senthil Kumar.

Arturo Vidal rages at Cristiano Ronaldo penalty during Bayern Munich match
They'll take on their former star, Mohamed Salah, while Edin Dzeko's aerial ability will be a huge threat to Liverpool's defense. The Chilean was taken off before half-time in his side's Champions League quarter-final second leg with Sevilla last night.

'Buckskin Girl' identified after being found dead in OH 37 years ago
A series of DNA profiles and studies were done on the victim, who became known as " Buckskin Girl " over the years. AIM Media Midwest Artist conceptions of Jane Doe , aka " Buckskin Girl ", from February 2016.

PM Modi reaches Tamil Nadu to participate in Defence Expo
He said India, with its leadership in Information Technology domain, would strive to use this technology tilt to its advantage. After attending the DefExpo, the Prime Minister was scheduled to travel to IIT Madras in the heart of the city.

The Crypto Eroscoin (ERO) had 2.49% move up on April 11-12
The general idea is, in order to have things transferred or executed by the network, you have to consume or burn Gas. The Reddit community for Ethereum is /r/ethereum and the currency's Github account can be viewed here.

Hurricane Nate name retired as hurricane name
In 1953, the United States began using female names for hurricanes and, by 1979, both male and female names were used. Four notable storms from the 2017 season had names that will no longer be used for hurricanes, according to the U.N.

Ban on Sri Reddy lifted with Help from Human Rights Body
The MAA, which filed a police complaint against the actress, has said action against her has been taken as per rules, the NHRC said.

Track and Field: Loveland wins another R2-J district title
It was a far different feeling from his sophomore year when he ran the mile while battling stress fractures in his legs. And a quick look at results any given night proves that's true about the Underwood girl's track team.

Israel summons Ireland's ambassador over conference attended by Dublin Lord Mayor
They also noted two recent votes of Dublin City Council to expel the Israeli ambassador and to support a boycott of the country. The ministry expressed "deep disappointment and shock" at Micheál Mac Donncha's attendance at the event.

Gophers Hire Lindsay Whalen as Head Coach
National team since 2002, joining Team USA following her sophomore season with the Gophers. "I'm ready to get started". Some fans immediately wanted Whalen; others weren't so sure someone with no coaching experience was the best choice.

Alcohol guidelines in many countries may not be safe
People have the right to know how alcohol consumption affects their health so they can make informed choices about their drinking. However, the worldwide study carries implications for countries across the world, where alcohol guidelines vary substantially.

Fortnite servers are dead, in 'emergency maintenance' mode
The game developer is saying that the login issues are directly related to a database error and they are now working a hotfix. Investigating - We're experiencing issues with our account services that may cause login issues.

Jerry Springer television producer charged with killing deaf and partially blind sister
LAPD is urging anyone with additional information to call Detective Dave Peteque, Valley Bureau Homicide, at 805-750-7888. On April 11, 2018, police say, Jill Blackstone "was arrested by Homicide detectives and the Baltimore Police Department".

JS School Board at 'wits' end' with big decisions
The district also has a flourishing band program and needs to redirect Johnson's time to the middle and high schools, he said. In order to close Salladasburg and Avis Elementary schools, the board must decide at the meeting scheduled for April 30.

Coutinho could receive Champions League winner's medal
However, it means that if Liverpool do win the competition, Coutinho would be entitled to his own winners medal. Coutinho played five times for Liverpool in Europe this term before his £142 million departure in January.





Most Commented

Ripple's XRP is '100% Not a Security,' Says Company's Chief Market Strategist
0 comments
Pakistan's top court bars ex-PM Sharif from holding office for life
0 comments
Drake reveals possible Fortnite 'lingo' in his new album
0 comments
'I'm Almost Dead,' He Told 911. 6 Hours Later, Body Was Found
0 comments
Chemical arms watchdog confirms United Kingdom findings on Russian-made nerve agent
0 comments
Bill Gates and Angelina Jolie Top the List Once Again
0 comments
All's well that ends WEL: Arsenal off the ropes and into semis
0 comments
David Pastrnak's Stellar Game 1 Performance Leads Bruins To Win Vs. Leafs
0 comments
Supreme Court clears decks for release of movie Nanak Shah Fakir
0 comments
Unnao Rape: FIR Filed Against BJP MLA; Case Transferred to CBI
0 comments