„Hacked out of the box“

Two new critical vulnerabilities in Google’s mobile operating system announced by security researchers on Thursday put more than a billion Android devices at risk of being hacked. That means “almost every Android device” is affected, ranging from Android version 1.0 to the latest version 5.0, also known as “lollipop,” the researcher said. […]

Avraham added that his team had not invested the time to determine which apps and media players in particular might be vulnerable, since many of these are vendor or carrier-specific and would have taken too long given the variety of applications within the fragmented Android manufacturing ecosystem. Android devices of the version 5.0 and above, however, don’t need the additionally vulnerable apps, he said. These devices instead can be “hacked out of the box.”

Robert Hackett | „Stagefright is back: More than 1 billion phones can be hacked with 1 video or song“

Betriebssystemhersteller, Smartphoneproduzenten sowie Mobilfunkbetreiber sollten allesamt in die Verantwortung gezogen werden, wenn ein Patch für Sicherheitslücken dieser Schwere nicht zeitnah ausgespielt wird.

Passieren wird das natürlich nicht. Und so bleibt Apples Update-Politik für iOS eines der stärksten Argumente der Plattform.

iOS 9 läuft auf allen iPhones, iPads und iPod touches, die von 2011 bis heute erschienen. In den ersten zwei Wochen drückten ihre Nutzer bei 52-Prozent aller Geräte auf den Update-Knopf.