Researchers Suggest Phone Makers Mislead Consumers About Security Patches
Security Research Labs says Android phone makers often miss security patches but still tell owners the phones are up-to-date. Researchers Karsten Nohl and Jakob Lell examined the code of some 1,200 phones from more than a dozen phone makers for every security patch released during 2017. They discovered phones from nearly all makers missed at least some patches. Phones from Google, Sony, and Samsung ranked fairly well, missing an average of just one patch. Phones from Xiaomi, Nokia, and OnePlus missed between one and three patches per update, while devices from HTC, Motorola, LG, and Huawei missed three to four, and phones from TCL (Alcatel) and ZTE often missed more than four patches per update. High-end devices with processors from Samsung or Qualcomm were more likely to updated properly, while low-cost devices with processors from MediaTek were less likely to be updated properly. Nohl and Lell say what's worse than the missed patches are the phone makers' claims to the contrary. "We find that there's a gap between patching claims and the actual patches installed on a device. It's small for some devices and pretty significant for others," said Nohl to Wired. "We found several vendors that didn’t install a single patch but changed the patch date forward by several months. That’s deliberate deception." The researchers claim this lulls consumers into a false sense of security, though they admit that hacking into Android phones through any of the missed patches is a difficult task at best. In response to the data, Google argued that not all the devices researched were Android certified, and that modern Android phones have other security measures in place to protect them. "Security updates are one of many layers used to protect Android devices and users," said Scott Roberts, Android product security lead at Google. "Built-in platform protections, such as application sandboxing, and security services, such as Google Play Protect, are just as important." Still, Google said it would work with Security Research Labs to investigate Nohl and Lell's findings.
HTC 10 Re-Focuses On the Camera and BoomSound
Apr 12, 2016
HTC today announced the 10, its flagship handset for 2016. This Android phone carries forward an aluminum design, for which HTC has become known, and makes big improvements to the camera, software, and other core features.
Cricket Offering Galaxy S9 Promo and Open Enrollment for Insurance
Cricket Wireless today announced several promotions timed with the arrival of the fall season. First up, customers who open a new line of service with Cricket and port in their number can buy the Samsung Galaxy S9 for $499, a savings of $120 off the regular price.
Huawei Intros Android 9 Pie-Based EMUI 9.0
Sep 1, 2018
Huawei today revealed its forthcoming user interface skin, EMUI 9.0. The new user experience is based on Android 9 Pie, which means it offers many of the new features included in Google’s code.
OnePlus Offers Open Beta of Android 9 Pie to the OnePlus 6
Sep 4, 2018
OnePlus has made the first Open Beta build of OxygenOS based on Android 9 Pie available to the OnePlus 6. OnePlus had previously been testing the beta with a closed group.