More than 99% of Android phones are potentially leaking data

Miss Panda

Well-Known Member
Member
Joined
Aug 15, 2007
Messages
583
Trophies
0
XP
339
Country
http://www.bbc.co.uk/news/technology-13422308
http://news.sky.com/skynews/Home/Technolog...%2C_Study_Shows
QUOTE said:
More than 99% of Android phones are potentially leaking data that, if stolen, could be used to get the information they store online.

The data being leaked is typically used to get at web-based services such as Google Calendar.

The discovery was made by German security researchers looking at how Android phones handle identification information.

Google has yet to comment on the loophole uncovered by the team.QUOTESometimes, the study says, these tokens are sent in plain text over wireless networks. This makes the tokens easy to spot so criminals eavesdropping on the wi-fi traffic would be able to find and steal them, suggest the researchers.

Armed with the token, criminals would be able to pose as a particular user and get at their personal information.

Even worse, found the researchers, tokens are not bound to particular phones or time of use so they can be used to impersonate a handset almost anywhere.

Blimey, here we go again.



I couldn't see this posted anywhere here yet.
 

MrShawnTRods

Well-Known Member
Member
Joined
Mar 26, 2011
Messages
4,646
Trophies
1
XP
1,058
Country
United Kingdom
LOL. First PSN and now this.
Nothing is safe these days
tongue.gif
 
Z

Zorua

Guest
Can't wait for the devs to claim that this wasn't done on purpose and that they're gonna fix it with a security update.
rolleyes.gif
 

smile72

NewsBot
Member
Joined
Sep 23, 2010
Messages
1,911
Trophies
0
Age
28
Location
???
XP
928
Country
I kinda wanted an Android (I have a Blackberry) if not just for Disgaea for Android, I think NISA is going to release it, because the series always gets them tons of cash. I've gotta find a way of getting one, even though they leak data (which will hopefully be fixed before Disgaea for Android hits the U.S).
 

BlueStar

Well-Known Member
Member
Joined
Jan 10, 2006
Messages
4,092
Trophies
0
Location
UK
XP
661
Country
It's something that needs to be patched, certainly. But it's only a problem if you sit around all day using coffee shop wi-fi and someone can be bothered to hang around packet sniffing for hours for the sake of accessing a stranger's calendar.
 

Foxi4

Endless Trash
Global Moderator
Joined
Sep 13, 2009
Messages
28,158
Trophies
0
Location
Gaming Grotto
XP
25,572
Country
Poland
Newsflash!

100% of bluetooth, wi-fi or any other wireless connection types leak data. Intercepting a wireless signal takes 1 antena, 1 laptop and some spare time.

Newsflash #2!

Cable connections also have the capacity to leak data - you have 0 knowledge of where the cable goes as soon as it leaves your house. The admins have 0 knowledge of where the cable goes as soon as it leaves the server room. Etc, etc.

Newsflash #3!

Data leaks are nothing new. Messengers "leaked" data via means of arrowheads in the face in the Roman Empire, digital data can be "snatched" nowadays. Not much has changed.
 

Cuelhu

GBATemp's Pepelatz Driver
Member
Joined
May 19, 2010
Messages
550
Trophies
0
Age
32
Location
Fantasy Land
XP
283
Country
Brazil
Foxi4 said:
Newsflash!

100% of bluetooth, wi-fi or any other wireless connection types leak data. Intercepting a wireless signal takes 1 antena, 1 laptop and some spare time.

Newsflash #2!

Cable connections also have the capacity to leak data - you have 0 knowledge of where the cable goes as soon as it leaves your house. The admins have 0 knowledge of where the cable goes as soon as it leaves the server room. Etc, etc.

Newsflash #3!

Data leaks are nothing new. Messengers "leaked" data via means of arrowheads in the face in the Roman Empire, digital data can be "snatched" nowadays. Not much has changed.
they are sending personal information as plain text, with no encryption whatsoever. That's the problem, not the use of insecure connections.
 

gumgod

Well-Known Member
Member
Joined
Sep 12, 2009
Messages
292
Trophies
0
XP
173
Country
United States
There's a reason I don't let my phone connect to random wifi networks. In fact 99% of the time the wifi radio on my phone is off. I would hope it would be much harder to sniff the packets if they are going through the 3G network.
 

ItsMetaKnight

Well-Known Member
Member
Joined
Mar 4, 2008
Messages
864
Trophies
0
Website
Visit site
XP
1,346
Country
I don't see why everyone thinks this is a major security issue? There is no active leaking data. It's the same as if you would use your laptop in a non-secured WLAN. Wow, all laptops are insecure.
 

shakirmoledina

Legend
Member
Joined
Oct 23, 2004
Messages
6,613
Trophies
0
Age
31
Location
Dar es Salaam
Website
vfootball.co.nf
XP
790
Country
Tanzania
i think the sony issue has sparked some research to check all devices on how they perform security wise. Everything is unsafe and probably already hacked but ppl dont know and hence ethical hackers try to find out what. The 27c3 conference also aimed to show that some lines are hackable just near the building.
 

CarbonX13

GBAtemp 台灣人
Member
Joined
Aug 27, 2010
Messages
1,399
Trophies
0
Location
Vancouver, B.C.
Website
Visit site
XP
126
Country
Taiwan
Google's announced that they will be applying a 'stealth patch' for everyone's devices in the next few days. The patch will not require any carriers to officially push it out, nor require you to actually perform the update through your device. Apparently this one will only help for Contacts and Calendars, while further updates will patch everything up completely.

Source
 

Site & Scene News

General chit-chat
Help Users
  • DSgodman @ DSgodman:
    lol wat is this
  • Maq47 @ Maq47:
    Ur mum. lol xD
  • wiiuepiccpu @ wiiuepiccpu:
    F u n n i t e x t
  • PeeJay Bonobo @ PeeJay Bonobo:
    I wonder what the speeds are with this upload I'm doing, because I have a reason to believe that YouTube is barely taking advantage of my upload speed under Firefox.
  • Ishzark @ Ishzark:
    did your upload slow down? V:
  • Ishzark @ Ishzark:
    #+
  • Ishzark @ Ishzark:
    oops
  • PeeJay Bonobo @ PeeJay Bonobo:
    No, I've checked my upload, it's still good.
  • Ishzark @ Ishzark:
    so Youtube is not the one at fault
  • PeeJay Bonobo @ PeeJay Bonobo:
    I blame Firefox. I can't believe I'm saying this, but if this was Chrome, the video would be processing right now.
  • CeeDee @ CeeDee:
    @wolffangalchemist you're just doing it wrong, smh
  • Ishzark @ Ishzark:
    greedy Firefox
  • CeeDee @ CeeDee:
    comic sans is pretty awesome
  • CeeDee @ CeeDee:
    I mean... at least I think so... HAH
  • VinsCool @ VinsCool:
    poop
  • Olmectron @ Olmectron:
    bread
  • boomy @ boomy:
    bread
  • Olmectron @ Olmectron:
    breadofthewild
    +1
  • RichardTheKing @ RichardTheKing:
    ^ That explains why that game feels so stale and old and gross; thanks!
  • Asia81 @ Asia81:
    pooping a bread in the wild
    +2
  • kenenthk @ kenenthk:
    Yo found my PS1 pizza hut demo disc
  • thehawksfuckingdead7 @ thehawksfuckingdead7:
    ps1 games are wild man
  • RichardTheKing @ RichardTheKing:
    Okay, how do I disable that "GBAtemp wants to enable push notifications" banner at the bottom of the screen? It keeps appearing whenever I visit the home page, and I can't enable them.
    RichardTheKing @ RichardTheKing: Okay, how do I disable that "GBAtemp wants to enable push notifications" banner at the bottom of...