Vicious Heartbleed bug bites millions of Android phones, other devices

posted onApril 15, 2014
by l33tdawg
http://cdn.arstechnica.net/wp-content/uploads/2014/04/Anopheles_stephensi-640x423.jpeg
Credit: http://cdn.arstechnica.net/wp-content/uploads/2014/04/Anopheles_stephensi-640x423.jpeg

The catastrophic Heartbleed security bug that has already bitten Yahoo Mail, the Canada Revenue Agency, and other public websites also poses a formidable threat to end-user applications and devices, including millions of Android handsets, security researchers warned.

Handsets running version 4.1.1 of Google's mobile operating system are vulnerable to attacks that might pluck passwords, the contents of personal messages, and other private information out of device memory, a company official warned on Friday. Marc Rogers, principal security researcher at Lookout Mobile, a provider of antimalware software for Android phones, said some versions of Android 4.2.2 that have been customized by the carriers or hardware manufacturers have also been found to be susceptible. Rogers said other releases may contain the critical Heartbleed flaw as well. Officials with BlackBerry have warned the company's messenger app for iOS, Mac OS X, Android, and Windows contains the critical defect and have released an update to correct it.

Source

Tags

Security Android

You May Also Like

Other Articles In This Section

Recent News

Thursday, April 25th

My 30-Day Journey on a Dark Web Marketplace That Belonged to a Cyber Gang
How NASA Repaired Voyager 1 From 15 Billion Miles Away
US bans TikTok owner ByteDance, will prohibit app in US unless it is sold
Nation-state hackers exploit Cisco firewall 0-days to backdoor government networks
Is the Arm version of Windows ready for its close-up?

Wednesday, April 24th

Microsoft’s Phi-3 shows the surprising power of small, locally run AI language models
Change Healthcare Finally Admits It Paid Ransomware Hackers—and Still Faces a Patient Data Leak
Noncompetes Are Dead—and Tech Workers Are Free to Roam

Tuesday, April 23rd

Meta debuts Horizon OS, with Asus, Lenovo, and Microsoft on board
Could ChatGPT be the next big cybersecurity worry — researchers say it can crack systems faster than ever before
Russia accused of jamming GPS signal on flights from UK causing route chaos
Rare Computer Virus Detected in Ukrainian Network, Confidential Document Potentially Compromised
The Next US President Will Have Troubling New Surveillance Powers
Apple reportedly plans M4 Mac mini for late 2024 or early 2025, skipping the M3
Windows vulnerability reported by the NSA exploited to install Russian malware

Monday, April 22nd

Bitcoin Miners Brace for the ‘Halving’—and Race to Cash In
This AI-controlled jet fighter has now flown against human pilots
The Biggest Deepfake Porn Website Is Now Blocked in the UK
The House Passes a TikTok Ban Bill That’s on the Fast Track
Crypto influencer guilty of $110M scheme that shut down Mango Markets
Netflix doc accused of using AI to manipulate true crime story

Wednesday, April 17th

A sneaky new steganography malware is exploiting Microsoft Word
Google Workers Protest Cloud Contract With Israel's Government
Attackers are pummeling networks around the world with millions of login attempts
Linus Torvalds reiterates his tabs-versus-spaces stance with a kernel trap

Tuesday, April 16th

China urges U.S. to immediately stop cyberattacks against China
Roku activates 2FA for 80M users after breach of 576K accounts
Apple removes the first iOS Game Boy emulator released under new App Store rules
US woman arrested, accused of targeting young boys in $1.7M sextortion scheme

Monday, April 15th

Australian police arrests man over alleged creation and sale of 'Firebird' RAT
SD cards finally expected to hit 4TB in 2025
“Highly capable” hackers root corporate networks by exploiting firewall 0-day
Sleeping more flushes junk out of the brain

Friday, April 12th

Eric Schmidt Warned Against China’s AI Industry. Emails Show He Also Sought Connections to It
NYC start-up founder Sophia D’Antoine, 30, dies after being mowed down crossing UES street