Discuss Massive Security Vulnerability in HTC Android Devices at the Info and Announcements within the HTC Evo 4G Forums, Evo 3D Forums , and Evo View Forums; I usually just ignore security warnings, but this one is pretty serious...
The Vulnerability:
Any app on affected devices that ...
-
Administrator
Massive Security Vulnerability in HTC Android Devices
I usually just ignore security warnings, but this one is pretty serious...
The Vulnerability:
Any app on affected devices that requests a single android.permission.INTERNET (which is normal for any app that connects to the web or shows ads) can get its hands on:
- the list of user accounts, including email addresses and sync status for each
last known network and GPS locations and a limited previous history of locations
phone numbers from the phone log - SMS data, including phone numbers and encoded text (not sure yet if it's possible to decode it, but very likely)
- system logs (both kernel/dmesg and app/logcat), which includes everything your running apps do and is likely to include email addresses, phone numbers, and other private info
Affected Phones
EVO 4G
EVO 3D
EVO Shift 4G
View 4G
What to do?
Not much can be done without a patch from HTC. If you rooted, immediately remove Htcloggers (/system/app/HtcLoggers.apk)
Don't install and remove suspicious apps.
Massive Security Vulnerability In HTC Android Devices (EVO 3D, 4G, Thunderbolt, Others) Exposes Phone Numbers, GPS, SMS, Emails Addresses, Much More
-
Tags for this Thread
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
Forum Rules
LinkBack URL
About LinkBacks
Reply With Quote
Bookmarks