Thursday, 19 May 2011 02:17
Google’s Android Credentials Vulnerability Being Patched
Well it didn’t take too long for Google to response. We mentioned just yesterday about the Android vulnerability found in ClientLogin that could have some serious security ramifications. Using a dummy open access point, a nefarious third party could passively through the use of Wi-Fi collect authentication tokens to password protected services such as Facebook, Twitter, and Google Calendar stored on affected Android devices. Speaking with Mobilized’s, Ina Fried, the Android-maker has stated that it is taking action, and fast. Google told the publication; “Today we’re starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts. This fix requires no action from users and will roll out globally over the next few days.” The vulnerability will still be present in the company’s Picasa online photo offering, but Google stated that it is working to patch that service as well. It’s nice to see that the response has been very quick but still disappointing that security issues like these are still being discovered. What do you think of the whole ordeal? Let us know in the comments below! As usual, stay tuned for more news and info on the topic by following us on Facebook, Twitter and/or by subscribing to our RSS Feed. Read More Authors:
Read 7376 times
Published in
News Technologique-Tech News