8 Android phones exhibit security flaws in pre-installed apps

Researchers at North Carolina State released a study recently wherein they evaluated the security configurations of popular Android devices from Motorola, HTC, and Samsung. The study revealed that the manufacturers did not properly implement Google’s native security protocols. This lapse in secure implementation has led to phones not properly protecting privileged permissions from untrusted applications.

The phones evaluated included: the HTC Legend, EVO 4G, and Wildfire S; the Motorola Droid and Droid X; the Samsung Epic 4G; the Google Nexus One and Nexus S. To Google’s credit, the vulnerability was not as pronounced on their Nexus devices, which led researchers to believe that the manufacturers affected by this news failed in their implementation of Google’s security model.

Now, after their discovery, they notified the manufacturers and Google of the hole. Responses from Motorola and Google were swift. They confirmed that the problem existed, but HTC and Samsung have yet to issue any sort of response. The researchers did point out that there were “major difficulties” in trying to report the problem to HTC and Samsung. Do you own one of the aforementioned phones? Will this news affect the way that you download apps?

via Ars Technica

Tags: , , , , , , , , ,