Published: Sun, April 15, 2018
Tech | By Tabitha Holland

Android Phone Makers Caught Fibbing About Security Patches

Android Phone Makers Caught Fibbing About Security Patches

Some of the largest Android smartphone makers are thought to be misleading users about important security updates, according to a report from Wired.

Several top-tier Android phone vendors - Samsung, HTC and the like - have mislead users into believing security patches have been installed when in fact they have not.

After conducting a research that spanned two years on Android devices, Security Research Labs (SRL), a German security firm claims that many devices had what SRL call a "patch gap". A research on security patches carried out in Germany says that the Android vendors who suggest their customers update the phone for latest security patches are not right. The companies like Google, Samsung, and Sony got a very good record of installing the patches but the companies like Lenovo's Motorola, TCL and ZTE have got the problem to roll out the updates.

Google on Thursday unveiled Google Go, a new app built to support Android devices with one gigabyte Random Access Memory (RAM) and below.

One of the many reasons for Android to be deemed as insecure is because of an irregular update cycle.

Because these hardware-level fixes are accounted for in the Android security bulletins, this created situations where OEMs delivered updates claiming to have a "security patch level" but they were actually missing some of the patches for that "level".

What's The Story Of Android's Security Patches All About? But the worrying thing is that users may not actually be protected like manufacturers make out. Most other major Android phone makers fall somewhere in between. Some phone vendors did better than others.

Yet, with a growing amount of malicious code coming from more sophisticated actors, those involved in the Android software development chain shouldn't chance missing out on patches in the case that a string of holes leads to a ideal strike.

The company also argued that some missing patches could be to do with a specific phone not offering an affected feature, or a feature being removed entirely as opposed to patching it. At the bottom of the list were Chinese brands TCL and ZTE, all of whose phones had four or more missing updates.

Therefore this android first newly developed preview has been out and it is quite clear to all the users regarding the future of the Google's mobile OS has to offer to them. For some features, the app needs to be run on rooted Android phones, but the security patch analysis will work on all phones using a Qualcomm chipset.

Like this: