The phone makers in question aren't specifically revealed by the research company or Wired, which first reported the findings.
What's The Story Of Android's Security Patches All About?
These smartphone makers have created a false sense of security among their users. Researchers Karsten Nohl and Jakob Lell said that there's often a hidden "patch gap" between what the phones manufacturers tell the users about their software patch and what patches have actually been installed. "Probably for marketing reasons, they just set the patch level to nearly an arbitrary date, whatever looks best".
While Nohl says that it was possible that manufacturers accidentally missed a patch or two, this was certainly not the case in every instance of misreporting.
Yes and no. SRL pointed out that manufacturers are only part of the problem while the main blame can be attributed to chip makers. Samsung was singled out in Wired's report, but it wasn't clear from the report whether Samsung specifically employed the patch date manipulation method described above. SRL notes that MediaTek was the biggest offender for chip-level patch omissions - those ended up going up the chain to the OEMs and, thus, were missing from the overall software updates. It also reassured that even with patches missing, it would be hard for a bad actor to hack an Android device. The focus was to check Android vendors claim of rolling updates and especially the critical security updates that got released in 2017. The devices which use the processors from Taiwan's MediaTek miss out 9.7 patches from their phones. Even if you have a flawless device but it is not receiving timely OS updates, there are chances it will feel outdated and vulnerable to issues even before the standard two-year cycle.
Some Android smartphone manufacturers have been caught lying about security updates, which means that your device might not be as safe as you think.
The differences vary from model to manufacturer but since the patches are indicated in the monthly Security bulletins published by Google, this should not happen under any circumstances. Meanwhile companies like Nokia, OnePlus and Xiaomi were missing 1-3 patches on average. For some features, the app needs to be run on rooted Android phones, but the security patch analysis will work on all phones using a Qualcomm chipset.
- Democrats push for quicker action on Greitens
- Pittsburgh Penguins dominate Philadelphia Flyers in Game 1
- Bill Cosby defense presses witness who claims he raped her in 1982
- Kane awarded Spurs goal after winning appeal
- Key Takeaways From The Greitens Report
- Dez Bryant Is Tweeting Through It, Taking It Personally
- Investor's Alert (Volatility in Focus) - First Horizon National Corporation, (NYSE: FHN)
- Facebook CEO Mark Zuckerberg Made $3 Billion During Hearings
- Donald Trump issues full pardon to former aide to Dick Cheney
- China's President Promises To Cut Auto Import Tariff, Files US Tariff Complaint