Google Releases “Master Key” Android Fix To OEMs

Home / Google Releases “Master Key” Android Fix To OEMs
Share This:

Google has released a patch for the “Master Key Vulnerability” that was revealed a few months ago. The patch has to go through the OEMs (Samsung, HTC, etc), then it will be pushed to your phone. The security hole affected how Android apps were cryptographically verified and installed, with the exploit allowing someone to modify the software but without changing the encryption. This vulnerability exists in nearly every version of Android, potentially affecting 900 million users. Google says the odds of this actually affecting your phone is “unlikely”. There’s a greater chance if you manually install apps to your phone, by copying the APK file to your phone and installing it without going through the Google Play Store.

“We have not seen any evidence of exploitation in Google Play or other app stores via our security scanning tools” Scigliano (Android’s Communications Manager) said of the exploit, pointing out that “Google Play scans for this issue – and Verify Apps provides protection for Android users who download apps to their devices outside of Play.”

By | 2016-10-16T15:57:04+00:00 July 9th, 2013|Categories: Smartphone|Tags: , , , |2 Comments

2 Comments

  1. @RBRussell_com July 9, 2013 at 2:24 pm - Reply

    Google Releases “Master Key” Android Fix To OEMs http://t.co/ijz42NS3l9

  2. Robert Russell (@mindfrost82) July 9, 2013 at 2:26 pm - Reply

    RT @RBRussell_com: Google Releases “Master Key” Android Fix To OEMs http://t.co/ijz42NS3l9

Leave a Comment