HTC working on solution to Android smartphone vulnerability
HTC acknowledged that several of its Android-powered smartphones harbor a vulnerability that could be exploited by third-party applications.
The vulnerability could give third-party apps the ability to steal private data. "HTC takes claims related to the security of our products very seriously. In our ongoing investigation into this recent claim, we have concluded that while this HTC software itself does no harm to customers' data, there is a vulnerability that could potentially be exploited by a malicious third-party application," HTC said in a statement. "A third-party malware app exploiting this or any other vulnerability would potentially be acting in violation of civil and criminal laws."
HTC said it hasn't received any reports of malware exploiting the security flaw, but it is recommending that users be careful when installing or updating applications from sources that aren't trusted. The company said it is working on a patch for the vulnerability and will issue it via an over-the-air update.
- see this BGR article