The hits keep on coming. Affects everyone on 2.3.3 and below.
http://gizmodo.com/5802617/androids-account-info-leakage-epidemic
http://gizmodo.com/5802617/androids-account-info-leakage-epidemic
Follow along with the video below to see how to install our site as a web app on your home screen.
Note: This feature may not be available in some browsers.
But his Iphone can keep him safe on a public, unsecured network right?
But his Iphone can keep him safe on a public, unsecured network right?
Woopty doo, the same thing applies and has to laptops. I remember a couple of months ago people were freaking out how some guy easily setup a firefox addon to sniff for peoples authentication cookies over public networks when they logged into sites. This is honestly no different.
This ^^^
Yes, it's a bad bug, but it's not nearly as bad as people want you to believe. Hell it's fixed in three different ways:
1. Apps themselves shouldn't be using the HTTP versions of Twitter, Facebook, or other sites like that. They have HTTPS versions for a reason. App devs just simply need to enforce HTTPS instead of HTTP.
2. Root and upgrade to 2.3.4. Motorola users (excluding OG Droid) need not apply.
3. Do not connect to an open network. Connecting to an open network is a dumbass idea in the first place. However, if for some reason (no idea what that reason could possibly be) you HAVE to use an open network don't do anything that requires sensitive data to be transmitted.
What apps themselves should or should not do isn't a fix for the user.
Most people have no clue what rooting is or how to do it. That isn't a fix for them. It might not even be a good fix for them as a lot of ROMs have issues with certain features and it requires a bit of research, time, and knowledge to do it right which most people don't have.
You really cannot think of a reason to connect to an open network? I mean, that doesn't even require much thought. One example is traveling overseas where that generally your only option for data. Another is for speed - wifi can often be much faster than wireless speeds in most areas.
This is according to researchers at the University of Ulm, in Germany, who found that any phones running a version of Android prior to 2.3.3 are vulnerable to an attack
It's because any phone not running Android 2.3.4, which Google released a few weeks ago, hasn't had the security hole patched yet.
Who needs wifi
HTC Thunderbolt user running on 4G LTE.