Some Popular HTC Android Smartphones Susceptible to "Massive Security Vulnerability"
October 2, 2011 3:30 PM
comment(s) - last by
Android Police uncovers some of HTC's dirty laundry
It's no secret that Android smartphones are
starting to take over the market
, as they are available from a number of different manufacturers, come in a number of different form factors, and can be had at multiple price points (ranging from high-value to high-dollar). When its comes to the most popular Android smartphones around, companies like Samsung, Motorola, and HTC often spring to mind.
Today, however, those using some of the latest HTC smartphones may be in for a rude awakening thanks to a massive security breach discovered by the folks at
. According to Artem Russakovskii, devices like the EVO 3D, EVO 4G, and Thunderbolt (among others) can fully reveal private user information if any app requests
Any app that calls out for the INTERNET permission has access to the following, reports Russakovskii:
the list of user accounts, including email addresses and sync status for each
last known network and GPS locations and a limited previous history of locations
phone numbers from the phone log
SMS data, including phone numbers and encoded text (not sure yet if it's possible to decode it, but very likely)
system logs (both kernel/dmesg and app/logcat), which includes everything your running apps do and is likely to include email addresses, phone numbers, and other private info
All of the information is stored thanks to new logging tools that HTC has introduced on its newer smartphones.
Russakovskii goes on to add, "I'd like to reiterate that the only reason the data is leaking left and right is because HTC set their snooping environment up this way. It's like leaving your keys under the mat and expecting nobody who finds them to unlock the door."
Android Police provides a full "proof of concept" app which you can download, along with a video of it in action which you can view below.
Updated 10/2/2011 @ 8:46pm EST
Engadget has posted the following response from HTC:
HTC takes our customers' security very seriously, and we are working to investigate this claim as quickly as possible. We will provide an update as soon as we're able to determine the accuracy of the claim and what steps, if any, need to be taken.
This article is over a month old, voting and posting comments is disabled
RE: Does this affect...
10/3/2011 9:36:50 AM
Agree, I think it is shameful that manufacturers use firmware updates to tempt customers to upgrade rather than supporting a phone throughout its lifecycle as certain other companies have done since 2007...
"It seems as though my state-funded math degree has failed me. Let the lashings commence." -- DailyTech Editor-in-Chief Kristopher Kubicki
Android Market Share Reaches 56 Percent; RIM's, Microsoft's Cut in Half
September 28, 2011, 8:01 AM
AT&T Defeats Purpose of New Apple SIM, Locks iPad Air 2 SIMs to Its Network
October 24, 2014, 2:17 PM
Get Ready for "Microsoft Lumia" Smartphones in Next Few Months
October 24, 2014, 12:26 PM
Report: Samsung Galaxy S5 to Receive Android 5.0 Lollipop in December
October 24, 2014, 11:26 AM
Dreadful Fire Phone Sales Lead to $170M Writedown for Amazon
October 24, 2014, 8:55 AM
Xiaomi Moves Data Out of China to Woo EU, America, Escape Security Concerns
October 23, 2014, 5:11 PM
Android Wear’s First Major Update Brings GPS, Offline Music Support
October 23, 2014, 1:34 PM
Most Popular Articles
Chinese Government Declares Digital War Against America's Top Tech Firms
October 20, 2014, 12:07 PM
Report: 2015 Ford Focus Electric MSRP Slashed by $6,000, Will Retail for $29,995
October 18, 2014, 6:23 PM
Apple Releases iOS 8.1; Adds Apple Pay Support, SMS Relay, Instant Hotspot
October 20, 2014, 1:00 PM
Windows 8.1 + Android "Sell Mini PC" w/ Bay Trail Creates New PC Form Factor
October 20, 2014, 5:07 PM
Update: Motorola Droid Turbo Coming Oct 28, 48-hour Battery Life Confirmed
October 19, 2014, 9:19 PM
Latest Blog Posts
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information