Company Logo



Home technology security Android's open-style is making devices vulnerable to attacks, says Kryptowire

Android's open-style is making devices vulnerable to attacks, says Kryptowire


Security

Android's open-style is making devices vulnerable to attacks, says Kryptowire

Kryptowire’s recent reports, or precisely the research results presented at the Black Hat USA security conference, revealed that millions of Android devices are vulnerable right out of the box. The Mobile Enterprise Security – Kryptowire – exposed bugs found in the firmware of 10 separate devices which also includes major players like Asus, Essential, LG, and ZTE.

The holes present in the firmware could lead to everything from letting an attacker lock someone out of their device to getting control over the apps or other programs in the device. Most of the attacks, according to Kryptowire, required users to download some kind of malicious software that could take advantage of the holes present in the firmware.

However, their reports majorly blamed the Android’s open nature to be the root cause for this vulnerability. The open-style build allows third parties to insert code to create forked versions of Android, and sometimes can even lead to gaps in the phone’s security.

Talking about the people in the supply chain who inject applications and their own code into devices, Kryptowire’s CEO Angelo Stavrou says that “… it increases the attack surface and the probability of software error… exposing end users to exploits they are not able to respond to.”

Stavrou also questions the efficacy of the patches pushed by device makers by Asus. “The user has to accept the patch. So even if they send it to the phone, you might not accept the update,” he said.


Business News


Recommended News


Most Featured Companies

ciobulletin-aatrix software.jpg ciobulletin-abbey research.jpg ciobulletin-anchin.jpg ciobulletin-croow.jpg ciobulletin-keystone employment group.jpg ciobulletin-opticwise.jpg ciobulletin-outstaffer.jpg ciobulletin-spotzer digital.jpg ciobulletin-virgin incentives.jpg ciobulletin-wool & water.jpg ciobulletin-archergrey.jpg ciobulletin-canon business process services.jpg ciobulletin-cellwine.jpg ciobulletin-digital commerce bank.jpg ciobulletin-epic golf club.jpg ciobulletin-frannexus.jpg ciobulletin-growth institute.jpg ciobulletin-implantica.jpg ciobulletin-kraftpal technologies.jpg ciobulletin-national retail solutions.jpg ciobulletin-pura.jpg ciobulletin-segra.jpg ciobulletin-the keith corporation.jpg ciobulletin-vivolor therapeutics inc.jpg ciobulletin-cox.jpg ciobulletin-lanner.jpg ciobulletin-neuro42.jpg ciobulletin-Susan Semmelmann Interiors.jpg ciobulletin-alpine distilling.jpg ciobulletin-association of black tax professionals.jpg ciobulletin-c2ro.jpg ciobulletin-envirotech vehicles inc.jpg ciobulletin-leafhouse financial.jpg ciobulletin-stormforge.jpg ciobulletin-tedco.jpg ciobulletin-transigma.jpg ciobulletin-retrain ai.jpg
ciobulletin-abacus semiconductor corporation.jpg ciobulletin-agape treatment center.jpg ciobulletin-cloud4wi.jpg ciobulletin-exponential ai.jpg ciobulletin-lexrock ai.jpg ciobulletin-otava.jpg ciobulletin-resecurity.jpg ciobulletin-suisse bank.jpg ciobulletin-wise digital partners.jpg ciobulletin-appranix.jpg ciobulletin-autoreimbursement.jpg ciobulletin-castle connolly.jpg ciobulletin-cgs.jpg ciobulletin-dth expeditors.jpg ciobulletin-form.jpg ciobulletin-geniova.jpg ciobulletin-hot spring it.jpg ciobulletin-kirkman.jpg ciobulletin-matrix applications.jpg ciobulletin-power hero.jpg ciobulletin-rittenhouse.jpg ciobulletin-stt logistics group.jpg ciobulletin-upstream works.jpg ciobulletin-x2engine.jpg ciobulletin-kastle.jpg ciobulletin-logix.jpg ciobulletin-preclinical safety (PCS) consultants ltd.jpg ciobulletin-xcastlabs.jpg ciobulletin-american battery solutions inc.jpg ciobulletin-book4time.jpg ciobulletin-d&l education solutions.jpg ciobulletin-good good natural sweeteners llc.jpg ciobulletin-sigmetrix.jpg ciobulletin-syncari.jpg ciobulletin-tier44 technologies.jpg ciobulletin-xaana.jpg

Latest Magazines

© 2024 CIO Bulletin Inc. All rights reserved.