Currently there is a new securityhole in Android.
If a Android device logs in a wlan access point, the attacker is be able to get access to your calender, contacts or in your picture folder.
I don't want to scare you. There must be serveral factors.
Factor #1: the attacker must be logged in the same access point like you are. For instance in an opened access point in a coffee shop.
Factor #2 : The synchronisation to google must be activated.
Factor #3: If there is a synchronisation the attacker must get the token from it. With this token he is able to get access to the Android device. So it's possible too to upload data to this device.
But who is really affected?
Every device which isn't upgraded to 2.3.4 or higher .Only the third party app Picasa (google isn't responsible for this app) has this security hole.
Those who do not currently use the latest version and still want to go use a free Wi-Fi, should'nt share data to google
8 comments:
Doesn't seem like a huge issue, just something to keep in mind. Thanks for the info!
Is the company doing something about this?
bad wifi :D i never liked it - wireless sucks
This is a little troublesome, actually.
There's been security holes in everything lately, I swear to god. Not going to affect me so much, I still don't have my Android phone yet. I can't wait to get it though.
I'll keep this in mind until it gets fixed though.
Hm ok. Good to know but the hacker wouldnt find any stuff there :3
You scared me for a second =P Till I read it's a third part app.
Wouldn't be a problem if there wasn't fragmentation. IIRC, most android phones are on 2.x, but not all of them are updated to at least 2.3. :/
But since it's third party apps at fault, it probably isn't as bad as it sounds.
Post a Comment