Stale Gingerbread… Android 2.3 Security Flaw Reported

Posted: January 30, 2011 in Uncategorized
Tags: , , , ,

Ouch... Droid's Latest O/S has a broken antenna

Several media outlets including eWeek and  Engadget have recently reported a potentially  dangerous security flaw in the latest Android OS (2.3 Gingerbread).  According to the reports, a researcher at North Carolina State University is warning that the flaw can allow attackers access to your personal information.  The bug reportedly allows malicious websites to possibly get access to a user’s microSD card, including voicemails, photos, and online banking information. Unless users eject the microSD card, disable JavaScript, or switch to a third-party browser, they will remain vulnerable… YUCK… Android 2.3 users have little recourse in squashing the bug. The folks at eWeek reported that Google is working on a solution to the problem, but there’s no word on when we can expect to see an update.

I’m sure Google will fix this unfortunate hole with a patch as soon as possible, but stories like this seem to be a common theme in the ever changing world of wireless networks and mobile devices.  We at Diversinet are commonly asked if “SSL” and mobile browsers are “enough security”?  Our position is that HIPAA  relevant or Personal Health Information (PHI) needs to be encrypted at all times, both at rest and in transit…

Mark

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s