Android-enheter drabbade av Heartbleed

Ars Technica:

Handsets running version 4.1.1 of Google’s mobile operating system are vulnerable to attacks that might pluck passwords, the contents of personal messages, and other private information out of device memory, a company official warned on Friday. Marc Rogers, principal security researcher at Lookout Mobile, a provider of antimalware software for Android phones, said some versions of Android 4.2.2 that have been customized by the carriers or hardware manufacturers have also been found to be susceptible.

Apples beslut att inte bygga in OpenSSL i iOS var ett bra sådant.

© 2020 Omsoc Publishing AB