Tech

Some Android OEMs Reportedly Skipping Security Patches

Some Android OEMs Reportedly Skipping Security Patches

Latest research at Security Research Laboratory in Germany has discovered that many vendors of android are wrongly informing customers that their devices are continuing the most recent updates.

Karsten Nohl and Jakob Lell of Security Research Labs spoke with Wired this week, outlining a two year long research effort in to 1200 Android devices.

Most non-Google Android phone makers (except for Sony) were once bad at keeping up with security patches. "Probably for marketing reasons, they just set the patch level to nearly an arbitrary date, whatever looks best", Nohl is quoted as saying.

Security patches on third-party devices has been an ongoing issue for Google and its Android operating system. Leaving any holes unpatched weakens the overall security of a device.

Motorola was joined in the three-to-four-missed-patch purgatory by HTC, Huawei and LG.

Further complicating the matter is the pure inconsistency of which devices get what quality of treatment: the Galaxy J5 (2016) honestly told consumers about its hit-and-miss patch record while the Galaxy J3 (2016) claimed to have every patch it received, but actually lacked 12 of them - two of them were of "critical" importance.

More news: Blue Jackets Beat Capitals in Overtime With Artemi Panarin's Amazing Goal

Some of the missed patches are expected to be made on accident, but Nohl and Lell came across certain phones where things just didn't add up.

While many of these missed security patches may not be inherently risky in isolation, hackers typically chain together multiple security holes to reach their goal, taking over devices and stealing data. SRL notes that MediaTek was the biggest offender for chip-level patch omissions - those ended up going up the chain to the OEMs and, thus, were missing from the overall software updates. While Android users have expressed a general displeasure over delayed patches, blatantly lying about updates is something new, and leaves the smartphones vulnerable to known hacking techniques.

NOhl said in an interview on Thursday that, the patching problems that occur on smartphones can be blamed due to the complexity of the Android ecosystem and poor quality control.

"Security updates are one of many layers used to protect Android devices and users", said Scott Roberts, security lead for Android products, in a statement to Wired. By showing users that these patches were installed when they weren't, owners believe that their handsets are safer than they really are. A German research firm, Security Research Labs have revealed that most of the smartphone makers fail to roll out security patches to their users and on many occasions they also skip it. Built-in platform protections, such as application sandboxing, and security services, such as Google Play Protect, are just as important. And Android's fragmentation is a problem that remains unsolved.

The researchers found patches were missing from a wide range of handsets across a variety of makers.


  • Important Analyst's Ratings to Watch: Monsanto Company (MON), HP Inc. (HPQ)

    Important Analyst's Ratings to Watch: Monsanto Company (MON), HP Inc. (HPQ)

    The firm's stock performance of this week stands at 6.85%, while the stock performance for the whole month is projected at 1.21%. The avg target $128 is 2.39% above the last ($125.01) price. (NYSE:TYL) earned "Buy" rating by Needham on Thursday, February 22.

    Taiwan Semiconductor Manufacturing Company Limited (TSM) stock recent close stands at $43.85

    United States stocks had fallen on Wednesday following Trump's Tweet that suggested military strikes on Syria could be imminent. Principal Fincl Group has 1.69M shares. 101.67 million shares or 0.09% less from 101.77 million shares in 2017Q3 were reported.

    FTB Advisors Inc. Has $11.81 Million Stake in Cisco Systems, Inc. (CSCO)

    Ally Financial Inc increased Walgreens Boots Alliance Inc stake by 10,000 shares to 55,000 valued at $3.99 million in 2017Q4. Stonehearth Capital Management LLC acquired a new position in Cisco Systems during the 4th quarter worth $102,000.
  • Taapsee Pannu expresses excitement over GHAZI's National Award victory

    Taapsee Pannu expresses excitement over GHAZI's National Award victory

    On being part of Baahubali and The Ghazi Attack , he stated, "I did a spectacle film, it worked. As for "Baahubali-2", it was a commercial success par excellence.
    Trump Announces Missile Strikes Against Syria

    Trump Announces Missile Strikes Against Syria

    Across Eastern Ghouta, more than 165,000 people have left via secure corridors. "So they'll be made fairly soon". In another tweet on Thursday, Trump wrote that an attack on Syria "could be very soon or not so soon at all! ".

    Lockheed Martin Corporation (LMT)

    The aerospace company reported $4.30 earnings per share for the quarter, beating analysts' consensus estimates of $4.06 by $0.24. Finally, Elkfork Partners LLC purchased a new stake in shares of Lockheed Martin during the 4th quarter worth about $2,113,000.
  • CME Group (CME) Given Consensus Rating of "Buy" by Brokerages

    Nikko Asset Mngmt Americas invested in 254,897 shares or 0.97% of the stock. 33,156 are owned by Granite Inv Ptnrs Ltd Liability. Finally, Lake Street Advisors Group LLC purchased a new position in shares of CME Group in the fourth quarter worth $624,000.
    Jim Carrey's first lead role in years: Dark Crimes trailer

    Jim Carrey's first lead role in years: Dark Crimes trailer

    Charlote Gainsbourgh also stars - which only increases The Snowman vibe, since Gainsbourgh appeared in that film as well. I'm willing to give Dark Crimes a shot simply because I want to see how Carrey handles this material.
    NFL Mock Draft: Oakland Raiders 3-round mock 6.0

    NFL Mock Draft: Oakland Raiders 3-round mock 6.0

    And as Niner Noise's Aaron Tan pointed out, as many as five QBs could be selected before the 49ers' first pick at No. 9 overall. As the draft draws on, Wyoming's Josh Allen and Louisville's Lamar Jackson could be called early as well.
  • Gong Li, Jet Li join Disneys Mulan

    Gong Li, Jet Li join Disneys Mulan

    It is unknown how big of a part she will play, given that Mulan spends most of the story away from home. While fans find the new story questionable, this cast will likely do a good job bringing it to life.

    Now Is the Time to Reconsider: Skyworks Solutions Inc. (SWKS)

    Skyworks Solutions Inc designs, develops, manufactures and markets semiconductor products, including intellectual property. How much shares are traded? Edison International (NYSE:EIX) has declined 21.55% since April 13, 2017 and is downtrending.

    Lam Research Corp (LRCX) Shares Rose While Zacks Investment Management Decreased Stake

    The stock had a trading volume of 3,081,008 shares, compared to its average volume of 3,773,896. 143 are owned by Hanson Mcclain. Mike Vranos decreased its stake in Lam Research Corp ( LRCX ) by 70% based on its latest 2017Q4 regulatory filing with the SEC.