We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
 
74,953 News Articles

Google to fix Android data flaw in 'next few days'

Search engine has started patch roll-out

Google has confirmed a flaw in its Android OS that could potentially see personal data leaked and revealed it will roll out a fix within "the next few days".

Yesterday, researchers from the University of Ulm highlighted the data leak, which is caused by the way the mobile OS handles log-ins for web-based services.

A number of apps in the OS require an authentication token from Google services, such as the search engine's Calendar function, when opened. The token means users don't need to keep logging-in to the service for a specific period of time. However these tokens are being issued over Wi-Fi networks, so cybercriminals monitoring the network would be able to spot them instantly and subsequently fraudulently gain access to the Google services themselves.

It is not thought the flaw, which applies to all versions of the OS except 2.3.4 and version 3.0 that is also known as Honeycomb and is designed for tablet PCs, is being exploited yet. However, Google still plans to distribute a patch.

"Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third-party access to data available in calendar and contacts," Google said.

"This fix requires no action from users and will roll out globally over the next few days."


IDG UK Sites

Samsung Galaxy Note 4 release date, price and specs 2014

IDG UK Sites

iOS 8 features wishlist: the changes iPhone and iPad users want in Apple's iOS 8

IDG UK Sites

25 Years of the World Wide Web: Happy Birthday, Intenet

IDG UK Sites

Developers get access to more Sony camera features