Google Wallet. Hopefully this time it won't cause issues for all of us rooted users either. While Google Wallet is still in its infancy and waiting to really take off, they've added tons of enhancements and improvements with today's update. Read on below for the full changelog and don't forget to use that $5 Wallet gave us last month.
Leviathan Security Group has posted a proof of concept application that can steal massive amounts of personal data when installed on an Android phone or tablet. No big deal, right? We've known about this sort of thing for ages. Except that Paul Brodeur's app can grab a shocking amount of data with zero Android system permissions, something that isn't supposed to be possible. The security loopholes exist in both Gingerbread and Ice Cream Sandwich, and can be presumed for other versions of Android as well.
United States Patent 8,138,930 lays the groundwork for a system that actually listens for keywords in phone conversations and stores the triggers in a database, to serve contextual advertisements later.
Android is right there with it. The increased attention has brought a flurry of media coverage, and even political types (who, for better or worse, are usually a step or two behind) are getting in on the action. The Vice President of the European Commission recently told Channel 4 News that Android's potentially harmful privacy policies are concerning... and may actually be illegal, at least by European Union common law.
view the passwords of saved WiFi SSDs. The flaw was discovered by the United States Computer Emergency Readiness Team and reported on the Homeland Security website. HTC has responded to the issue on their support website, stating that some of the phones are already fixed through regular security updates. However, some of the phones will need a additional update to be made secure. The manufacturer did not elaborate on which phones are currently safe and which are not.
a bug in HTC's Sense skin that allowed for remote file access on a handful of smartphones, then the whole Carrier IQ debacle, which was demonstrated mostly on HTC's hardware. The latest snafu was uncovered by the United States Computer Emergency Readiness Team, which states that a considerable amount of HTC phones are running flawed software that allows third-party applications access to encrypted WiFi passwords. The US-CERT team published their findings on the Homeland Security website yesterday.
exposed to any website they visited from their mobile phones. While not a malicious attack, a setting in O2's network was broadcasting its customers phone number in addition to standard browser data like user agents, device type and screen size. This morning Android phones and other O2 devices stopped broadcasting mobile phone numbers, indicating that the security hole has been patched. O2 still hasn't spoken publicly on the issue.