Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Pages: 1 [2]

Author Topic: 900 million Android phones at risk  (Read 6866 times)

sevenlayermuddle

  • Helpful
  • Addicted Kitizen
  • *
  • Posts: 5369
Re: 900 million Android phones at risk
« Reply #15 on: August 09, 2016, 07:38:38 PM »

One point I keep remembering is a close associate of mine who rose to a senior governmental role (not the UK), with impressive security clearance levels.  In early days of smartphones when a 3 horse race between Google/Apple/Blackberry, they were issued with Blackberrys - I understand that only Blackberry were deemed safe.

Modern Blackberrys are of course just fancy Androids and these folks are now given iPhones, but interesting that Blackberry used to be first choice?
Logged

gt94sss2

  • Kitizen
  • ****
  • Posts: 1281
Re: 900 million Android phones at risk
« Reply #16 on: August 09, 2016, 08:15:25 PM »

Modern Blackberrys are of course just fancy Androids and these folks are now given iPhones, but interesting that Blackberry used to be first choice?

It's the same in HMG. Traditionally, Blackberries were the only devices deemed secure enough and even now the higher up in classification the network is the more likely it will use a 'classic' blackberry.

Last I looked, some androids had been cleared by GCHQ but for low level/routine stuff only and iPhones were nowhere to be seen (for anything classified)
Logged

Chrysalis

  • Content Team
  • Addicted Kitizen
  • *
  • Posts: 7382
  • VM Gig1 - AAISP L2TP
Re: 900 million Android phones at risk
« Reply #17 on: August 09, 2016, 08:56:16 PM »

Still significantly better than the android situation.
Logged

j0hn

  • Kitizen
  • ****
  • Posts: 4093
Re: 900 million Android phones at risk
« Reply #18 on: August 10, 2016, 03:11:53 PM »

the difference is iphone owners can get security updates from apple, so if they were vulnerable its only temporary.
and I get monthly android security patches, from Google, on my Samsung phone. Your point isn't valid. Android changed the way security updates work back in android 5.*
Logged
Talktalk FTTP 550/75 - Speedtest - BQM

NEXUS2345

  • Reg Member
  • ***
  • Posts: 235
Re: 900 million Android phones at risk
« Reply #19 on: August 10, 2016, 04:55:34 PM »

Android didn't change the way they work, Google simply started releasing non-mandatory monthly patches to the Android Open Source Project (AOSP) and their Nexus, Pixel and Android One devices. It is still up to manufacturers to roll out the updates, this has always been the same.
Logged
Security improvement and remediation consultant with infrastructure specialisation

IDNet Openreach FTTP 1000/115 + Asus RT-AX92U | Virgin Media 200 + SuperHub 3 + Synology MR2200ac mesh | Sky 80/20 with WiFi Guarantee on Huawei 288 cabinet

Chrysalis

  • Content Team
  • Addicted Kitizen
  • *
  • Posts: 7382
  • VM Gig1 - AAISP L2TP
Re: 900 million Android phones at risk
« Reply #20 on: August 10, 2016, 06:16:57 PM »

and I get monthly android security patches, from Google, on my Samsung phone. Your point isn't valid. Android changed the way security updates work back in android 5.*

you and some people get updates, but not everyone does.

The samsung updates only happen on some carriers, the carrier has to approve it.

Older samsung phones dont have that facility at all.

Other vendors such as LG dont offer the updates direct like samsung.

Your head is in the sand if you think android doesnt have a problem, dont let brand loyalty mist your view.
Logged

sevenlayermuddle

  • Helpful
  • Addicted Kitizen
  • *
  • Posts: 5369
Re: 900 million Android phones at risk
« Reply #21 on: August 10, 2016, 07:45:15 PM »

I ceased to be an Android user some years back so, while I may be a little cynical, I'm by no means an authority on current update processes.  That said, my understanding is consistent with Chrysalis.   Also, the 'five things to know' (about this scare) article posted by Roseway, which does appear to be generally supportive of Android and tell 'their side' of the story, acknowledges that 'Android security is hard', and that device manufacturers still need to roll out the patches...

http://www.androidcentral.com/quadrooter-5-things-know-about-latest-android-security-scare

Quote
Even once patches are issued, they need to go through device manufacturers and carriers before being pushed out to phones
Logged

j0hn

  • Kitizen
  • ****
  • Posts: 4093
Re: 900 million Android phones at risk
« Reply #22 on: August 10, 2016, 08:48:18 PM »

Android didn't change the way they work, Google simply started releasing non-mandatory monthly patches
imo your sentence contradicts itself. to me that's a change.
you and some people get updates, but not everyone does.

The samsung updates only happen on some carriers, the carrier has to approve it.
on carrier branded firmware yes. I've never bought a handset with carrier branded firmware. my OTA updates come from Samsung, without o2/ee/Vodafone etc adding more bloatware.
Older samsung phones dont have that facility at all.
Older iPhones don't get updated either. all new Samsung's get monthly security patches.

I wouldn't call it burying my head in the sand. I wouldn't call this an Android issue at all. It doesn't affect all androids. it's a Qualcomm issue if anything. Or you could call it the handset manufacturers issue.

I'm not an Android fanboy. I owned only iPhones till the 4S came out. Also bought the original iPad. I've since had 3 Flagship Samsung phones, and 2 different Android tablets. I may at some point go back to owning an iPhone. Just way overpriced. I usually root my phone and stick a custom rom on it right away. Held off with my current handset due to Knox/warranty, but it will get rooted further down the road.
Logged
Talktalk FTTP 550/75 - Speedtest - BQM
Pages: 1 [2]