Well, that was quick. Just a couple days after a so-called "massive security vulnerability" was discovered in a few HTC phones, the Taiwanese manufacturer says a fix is on the way. Telling Phonescoop:
"HTC takes claims related to the security of our products very seriously. In our ongoing investigation into this recent claim, we have concluded that while this HTC software itself does no harm to customers' data, there is a vulnerability that could potentially be exploited by a malicious third-party application. A third party malware app exploiting this or any other vulnerability would potentially be acting in violation of civil and criminal laws. So far, we have not learned of any customers being affected in this way and would like to prevent it by making sure all customers are aware of this potential vulnerability."
That's pretty much exactly how our own Jerry Hildenbrand explained this on Sunday. It's a fairly big gaffe (and likely an embarassing one for some coders somewhere), and it's good that it was brought to light. But the sky really isn't falling, no personal data is oozing out the microUSB port of your phone, and nobody was scaling any walls.
HTC says the patch will be pushed out over the air after carrier testing.
- Filed under: