It has only been a few days since the potential security flaw that affects 99% of Android devices was discovered, but Google has already announced a fix will start rolling out as soon as today. The flaw could potentially allow hackers to access users' phone data, calendar, and contact apps through an open Wi-Fi network.
The threat involves all Android versions and affects the authentication of protocol ClientLogin. The flaw provides hackers an opportunity to steal the authentication token and use that to extract user data.
Google has stated that it took security and private data very seriously. The news come amidst the current scare among Sony's PlayStation Network breach, leaving many on edge. Google has acted quickly to assure everything is under control. Google issued a statement to Digital Trends:
Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in Calendar and Contacts. This fix requires no action from users and will roll out globally over the next few days, said a spokesperson.
Much praise has been garnered for Google's quick reaction to the potentially dangerous security flaw. Security experts have commented on the tech giant's impressive work to patch the issue.
The Google team talks about how they breathe security in and out, and this is a good example, said chief strategy officer for Top Layer Security Mike Paquette.
While users wait for the patch's release for their Android devices, it is important to take precaution in limiting or avoid using the Wi-Fi network.
Using 3G may eat into your data plan, but it is far less likely that your communications are being snooped upon, he said Graham Clueley, a consultant for security firm Sophos.