Security flaw found in T-Mobile’s G1 Android phone

android

A group of security researchers uncovered a security flaw in the web browser portion of Android that runs on the G1. According to researcher, Charles A. Miller the flaw could be exploited when a G1 user is tricked into visiting a malicious Web site. Malicious code on the website could then use this exploit to install software on the G1 that may, among other things, log keystrokes. Google has acknowledged the security flaw and points out that the sandbox-nature of Android limits the damage to a single application. Unlike other smartphones (read: iPhone) and PCs, this security flaw only affects the web browser and will not compromise any other portions of the phone. Google has already patched the open-source version of Android and is currently working with T-Mobile and HTC to get the security patch out to current T-Mobile customers. Hooray for OTA software upgrades as G1 owners now just need to wait for T-Mobile to push the patch out to their phone! Happy and soon-to-be-safe Android browsing!

Read

blog comments powered by Disqus