Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Pages: 1 [2]

Author Topic: 900 million Android phones at risk  (Read 2164 times)

sevenlayermuddle

  • Helpful
  • Kitizen
  • *
  • Posts: 3276
Re: 900 million Android phones at risk
« Reply #15 on: August 09, 2016, 07:38:38 PM »

One point I keep remembering is a close associate of mine who rose to a senior governmental role (not the UK), with impressive security clearance levels.  In early days of smartphones when a 3 horse race between Google/Apple/Blackberry, they were issued with Blackberrys - I understand that only Blackberry were deemed safe.

Modern Blackberrys are of course just fancy Androids and these folks are now given iPhones, but interesting that Blackberry used to be first choice?
Logged

gt94sss2

  • Reg Member
  • ***
  • Posts: 657
Re: 900 million Android phones at risk
« Reply #16 on: August 09, 2016, 08:15:25 PM »

Modern Blackberrys are of course just fancy Androids and these folks are now given iPhones, but interesting that Blackberry used to be first choice?

It's the same in HMG. Traditionally, Blackberries were the only devices deemed secure enough and even now the higher up in classification the network is the more likely it will use a 'classic' blackberry.

Last I looked, some androids had been cleared by GCHQ but for low level/routine stuff only and iPhones were nowhere to be seen (for anything classified)
Logged

Chrysalis

  • Content Team
  • Kitizen
  • *
  • Posts: 4951
Re: 900 million Android phones at risk
« Reply #17 on: August 09, 2016, 08:56:16 PM »

Still significantly better than the android situation.
Logged
Sky Fiber Pro - Billion 8800NL bridge & PFSense BOX running PFSense 2.4 - ECI Cab

j0hn

  • Reg Member
  • ***
  • Posts: 994
Re: 900 million Android phones at risk
« Reply #18 on: August 10, 2016, 03:11:53 PM »

the difference is iphone owners can get security updates from apple, so if they were vulnerable its only temporary.
and I get monthly android security patches, from Google, on my Samsung phone. Your point isn't valid. Android changed the way security updates work back in android 5.*
Logged
BT FTTC 55/10 ECI Huawei Cab - Zyxel VMG1312-B10A bridge mode + Asus RT-AC68U running Asuswrt-Merlin - minted on MDWS via DslStats

NEXUS2345

  • Reg Member
  • ***
  • Posts: 226
Re: 900 million Android phones at risk
« Reply #19 on: August 10, 2016, 04:55:34 PM »

Android didn't change the way they work, Google simply started releasing non-mandatory monthly patches to the Android Open Source Project (AOSP) and their Nexus, Pixel and Android One devices. It is still up to manufacturers to roll out the updates, this has always been the same.
Logged
Zen ADSL2+ | HG612 + TP-Link C2600 | Awaiting FTTC (build in progress)

Chrysalis

  • Content Team
  • Kitizen
  • *
  • Posts: 4951
Re: 900 million Android phones at risk
« Reply #20 on: August 10, 2016, 06:16:57 PM »

and I get monthly android security patches, from Google, on my Samsung phone. Your point isn't valid. Android changed the way security updates work back in android 5.*

you and some people get updates, but not everyone does.

The samsung updates only happen on some carriers, the carrier has to approve it.

Older samsung phones dont have that facility at all.

Other vendors such as LG dont offer the updates direct like samsung.

Your head is in the sand if you think android doesnt have a problem, dont let brand loyalty mist your view.
Logged
Sky Fiber Pro - Billion 8800NL bridge & PFSense BOX running PFSense 2.4 - ECI Cab

sevenlayermuddle

  • Helpful
  • Kitizen
  • *
  • Posts: 3276
Re: 900 million Android phones at risk
« Reply #21 on: August 10, 2016, 07:45:15 PM »

I ceased to be an Android user some years back so, while I may be a little cynical, I'm by no means an authority on current update processes.  That said, my understanding is consistent with Chrysalis.   Also, the 'five things to know' (about this scare) article posted by Roseway, which does appear to be generally supportive of Android and tell 'their side' of the story, acknowledges that 'Android security is hard', and that device manufacturers still need to roll out the patches...

http://www.androidcentral.com/quadrooter-5-things-know-about-latest-android-security-scare

Quote
Even once patches are issued, they need to go through device manufacturers and carriers before being pushed out to phones
Logged

j0hn

  • Reg Member
  • ***
  • Posts: 994
Re: 900 million Android phones at risk
« Reply #22 on: August 10, 2016, 08:48:18 PM »

Android didn't change the way they work, Google simply started releasing non-mandatory monthly patches
imo your sentence contradicts itself. to me that's a change.
you and some people get updates, but not everyone does.

The samsung updates only happen on some carriers, the carrier has to approve it.
on carrier branded firmware yes. I've never bought a handset with carrier branded firmware. my OTA updates come from Samsung, without o2/ee/Vodafone etc adding more bloatware.
Older samsung phones dont have that facility at all.
Older iPhones don't get updated either. all new Samsung's get monthly security patches.

I wouldn't call it burying my head in the sand. I wouldn't call this an Android issue at all. It doesn't affect all androids. it's a Qualcomm issue if anything. Or you could call it the handset manufacturers issue.

I'm not an Android fanboy. I owned only iPhones till the 4S came out. Also bought the original iPad. I've since had 3 Flagship Samsung phones, and 2 different Android tablets. I may at some point go back to owning an iPhone. Just way overpriced. I usually root my phone and stick a custom rom on it right away. Held off with my current handset due to Knox/warranty, but it will get rooted further down the road.
Logged
BT FTTC 55/10 ECI Huawei Cab - Zyxel VMG1312-B10A bridge mode + Asus RT-AC68U running Asuswrt-Merlin - minted on MDWS via DslStats
Pages: 1 [2]
 

anything