Monthly security patches are the most important updates you'll never get

Android is broken. We're all fans here, and I'd never want to switch to any other smartphone platform for my own needs, but we all know inside that Android is broken. The introduction of monthly security patches and how most of us aren't getting them only solidifies this simple truth.

Let me explain. Android is a huge convoluted set of source code files. It's not a stand alone product, as someone needs to build the actual product from those sources and distribute it. Any of us, with a little studying and some time, can take those source files and build an operating system out of them. Because most of it is open source, we can also change anything we like to make something unique. Google the words AOSP custom ROM — all of those people have access to the same code that Samsung or LG uses to build their "Android" with. It's fabulous.

Google encourages people to look through the code, try to break everything, be sneaky as hell and find security vulnerabilities in Android. Android may not be the most "open" open-source project out there, but the way they encourage others to find bugs and exploits is really great. Cash incentives work really well for a lot of things.

We're promised monthly updates, but instead we get a few updates on specific versions of a small handful of models. And a bunch of broken promises.

Once a month, since August of 2015, they take the information other people have given them about bugs and exploits, and edit the code to try and prevent it from happening. Code maintenance and security patching isn't fun or easy, but it's part of responsible software development — take care of your users. They then publish these changes, both in the code itself and as a bulletin so we know what they did without looking at code commits, each month. Nexus products get a small OTA security patch soon after.

Google's partners who make the phones we love get the changes a month in advance so they can also be ready to update as soon as they can. Some, like BlackBerry, are able to push these updates right away, with a short delay for carrier branded (remember this, it's important) models. Others take a little longer, and some phones will never, ever get any security patches.

These are the important updates. We all love the idea of getting new features and a new version of the operating system, but these patches are what you need to make sure the phone you keep your digital life inside is fit to use. Read some of the exploits addressed the next time Google announces their monthly patch notes. That's some scary stuff, and one day someone is actually going to release some bad software that takes advantage of all the unpatched phones. A bonafide Android security apocalypse is a real possibility.

That is broken. That needs fixed.

Security patch level under 9000

But fixing it is almost impossible. Companies modify the source code in ways that Google's updated code can't just be dropped in and everything rebuilt. Maybe they shouldn't be messing with the core of Android itself, but it's open and they can. Remember, companies want Android to work with their software and services as well as they can make it. This means they have to do much of the work fixing these issues themselves, and that takes time. And they have their own security issues to worry about with software they wrote in-house.

Companies get in the code and muck with things because it's open, and they can.

Sometimes, these companies also make "special" variations of their phones for carriers. Just because your phone says Samsung Galaxy S6 on the back doesn't make it the same as the one made specifically for Verizon or AT&T from a software standpoint. These phones are made to the carrier's specifications, and they get final say over software changes. All of this makes the complicated process of updating a phone even more complicated. Add in the fact that people building phones think some models aren't worth the time and money it takes to update them (and that is even more broken) and all of this is why most of us aren't getting the updates we deserve that make our phones safe.

We all want Google to step in and fix all of this, but the way Android works makes it almost impossible. Things could be re-written so that the code is more compartmentalized and certain areas could be independently updated (kind of the way Google broke out the web view component) but that would mean almost starting from scratch. And companies would still get in and muck with things because it's open, and they can. Then we're back where we started. Some people even think Google should stop allowing companies to use their services if they can't keep their phones updated, but legal issues mean that will never happen. Stop saying it.

The only reasonable way to fix this whole mess is for companies using the Android code to build phones (and tablets, and laptops and microwaves) to be more responsible. We thought that was going to happen when people like Samsung and LG promised monthly updates, but instead we got a few updates on specific versions of a small handful of models. And a bunch of broken promises.

We're going to see a slew of new phones from just about every company out there at MWC in the coming days. Unfortunately, most of them won't be getting the updates they need to keep them safe and secure. Remember this when you spend your money on your next.

Jerry Hildenbrand
Senior Editor — Google Ecosystem

Jerry is an amateur woodworker and struggling shade tree mechanic. There's nothing he can't take apart, but many things he can't reassemble. You'll find him writing and speaking his loud opinion on Android Central and occasionally on Twitter.

  • Shout out to Lenovarola and Verizon.. Posted via the Android Central App
  • It's fabulous The tip is not included! So tip your Uber driver.
  • What about dropped Nexus devices. My Nexus 4 still runs pretty well, and I guess I'm grudgingly okay with it still being on Lollipop. But I still need security updates. I think I may have gotten one or two since Marshmallow came out, but I'm not sure. Anybody know whether it's Google's official policy to keep these devices safe?
  • That phone has seen more than enough support now. You can't expect them to update it forever. Even with just the monthly patches.
  • Wow. This is kind of scary that buying a phone from certain companies can mean a sacrifice.
  • Yeah, it's scary enough that for me, also a BlackBerry 10 user, that I'm thinking that my next Android device has to be Nexus, BlackBerry, or no more Android for me. I'm currently using a Q10, Galaxy S5, and a Nexus 7 2013 for the most of my computing needs. I feel the BlackBerry is quite secure, I feel that the Nexus 7 being a Nexus device is reasonably well updated and secure enough, while the S5 saw the November security update and nothing since. That also included a few changes from Sprint which caused a complete loss in connectivity by the way and I had to swap out the phone because Sprint couldn't figure out how to fix it. I don't feel that safe using it. Flicked via the BlackBerry Keyboard on my S5
  • Android isn't broken Samsung and LG are. The two companies who ruin a perfectly good operating system. Posted via the Android Central App
  • I slightly disagree, some ways samsung and lg ui enhances android but other times it degrades. If all android oem only used stock android it be like cough ios cough... Posted via the Android Central App
  • Umm. No. Posted via the Android Central App
  • Dual Window Enough said A small loan of a broken G4
  • Eh, LGs dual window implementation is seriously limited compared to Samsung. It is what it is. Posted via the Android Central App
  • I'm not just stating LG's implementation. Samsung's one is excellent. A small loan of a broken G4
  • Either way it's there. Not so much for vanilla. Posted via the Android Central App
  • True. I had to root and download an app to enable all apps to be included in the multiwindow selection. Posted via the Android Central App
  • Its all about control, Apple have control over iOS so in term of fixes and updates they are faster than anything.. Google owns Android and they can provide faster updates to nexus cuz its not tie to any operator, almost all Nexus runs same OS.. but with Samsung, LG or others they have carrier mess and also for each region different configuration.. everything aside they have there own skins(even OEM without skins can't do things better) this can only be fix by having control.
  • And that's exactly how it should be at this point. We all went through various manufacturers, me - HTC & Samsung before I went nexus. Nexus is by far the best. Android at this point should only be 1 os with no skins. Manufacturers compete on hardware. Or take the Moto & Blackberry approach and only slight modification so you can actually update it. Posted via Techmology
  • Google just needs to make it a REQUIREMENT to use the google apps that a security update of base files must be able to be pushed from google. Obviously a restucture would have to be written but they need the control like apple has. OEM's can still modify whatever (look at what you can do with a nexus, stock android, and a little time) but they would obviously have to change the way its done. period.
  • They tried to encourage manufacturers to build "stock" versions of their flagships, which would get updates quicker. "No one" bought them. So we only have ourselves to blame.
  • Well, it's hard to buy something when it's not available for purchase. If the Google Play Editions had been more widely available, maybe they would have sold better.
  • What?? Posted via the Android Central App (Motorola Nexus 6 - US Cellular)
  • But those themes tho.. The tip is not included! So tip your Uber driver.
  • My last security update was back in December. Scary. Posted via the Android Central App
  • Yet you don't say what phone or carrier you are over. Fud Posted via the Android Central App
  • I sold my AT&T S6 Edge+ a month ago. At that time it was on the October security update. Verizon was on November and T-Mobile was on December. It's no FUD. All of us Android fans who are burying their heads in the sand because it's easier or because this supposedly hasn't impacted that many people yet are not doing anyone any favors. This needs to be fixed, and the primary culprits ib my view just based on the example I gave above, are not Samsung and LG, but rather the carriers. The only major changes that AT&T made to the stock S6 Edge were a bunch of bloatware apps, and not allowing the Hotspot button to be used as a shortcut. There is absolutely no justification for them to delay the security updates beyond a week or the after Samsung releases them, and Samsung releases them within a week or two of Google for their latest devices. Posted via the Android Central App
  • Actually it isn't so much the carrier as it is Samsung in this case. I don't thing you'll find a Samsung phone on the planet with with a security update later than December
  • My dad's Galaxy A5 2016 is on the January patch. Doesn't seem to work with US LTE bands, though. :/
  • For any Galaxy S or Galaxy Note phone less than two years old, it's all because of carrier agreements. While Samsung really needs to update every model less than 2 years old, they also need to tell the carriers to go to hell and renegotiate their contracts. Set up their own financing program and sell phones direct. If anyone can do it, Samsung can. And I'll buy one every damn year to support them.
  • If Samsung sold an unbranded unlocked device directly to consumers, I'm going for that option. I'm getting tired of dealing with carrier BS, which is why I always use unlocked devices, even if some don't work on all US LTE bands. If OEMs sold unlocked devices directly, I'm going for that option.
  • Sadly even a unlocked Samsung means EFF all. I got a unlocked s6 and it's not received a update since last year. It's simple really , Samsung and updates just don't go together. Great hardware but support is pathetic. It's why am thinking of switching to a Nexus when the new Nexus devices come out. Posted via the Android Central App
  • Agreed, I loved my Note 5 which is sitting a foot away from me with a dead battery and unused for two months now. I would buy an unlocked full bands phone that can be taken to any carrier. Actually I'd buy two one for me one for the wife.
  • Samsung unlocked would be the dream. Posted via the Android Central App
  • I'd buy one for my family and every friend who prefers Samsung (not a fan myself, but can certainly respect what they bring to the table). I'm still holding out the fleeting hope that the only difference the carrier versions of S7 variant devices will have is a tramp stamp and a delete-able preload of whatever carrier account management app (my Verizon, etc.) the phone comes on. I'm hoping for 2 maybe 3 SKUs worldwide for each S7, G5, and M10 device (really all OEM's but I'm not nearly that optimistic) Posted via something running something it's not supposed to...
  • That's what we have here in germany. Posted via the Android Central App
  • I agree. I have the HTC One m8 and the last security update I got was many, many moons ago. I keep coming on Android Central hoping to see an announcement that I will be seeing an update soon. This will be the last carrier branded phone I buy. From now on, it will be Nexus/ GPE or whatever gets me the regular updates that are supposed to keep us as secure as we can reasonably be. Posted via the Android Central App
  • I have the m8 and it was updated in January with T-Mobile. So I'm up to date. Until that point, received one in December, but not anything before that. So I've gotten the last 2 patches with T-Mobile htc one m8. Posted via the Android Central App
  • I can't use T-Mobile since I live out in the country and wouldn't have good coverage. I think I will convert mine to Google Play Edition if it looks like that would solve the problem. Posted via the Android Central App
  • Note 4 and Verizon. Posted via the Android Central App
  • Mine was Oct... Worse..
  • Unlocked Galaxy S6, XEU European model, not had any updates since September. This is an UNLOCKED, not on network, device Posted via the Android Central App
  • The story might have mentioned which companies do provide regular updates (hello Google Nexus and BlackBerry devices) ;)
  • Sad thing is that Google Nexus is not as widespread as the others. Second, Blackberry does it because it only has one phone? Is that correct? Does it have one? :P
  • This site won't let me edit my own incorrect comment. The nexus devices ARE mentioned. My bad.
  • It does. You just have to do it within 15 minutes. Not unreasonable Posted via the Android Central App
  • Sometimes, it won't allow you to edit after one edit. You have to refresh the page.
  • So in other words, someone needs to use a hack that Google fixed months ago to hack into some phones...that'll hopefully fix the lack of updates issues Posted via the Android Central App
  • My last security update was 11-1-15
  • Do we get to hear Samsung and LG'S side of the story as to why these updates aren't happening like they should? Probably not. Posted via the Android Central App
  • The lack of transparency is puzzling.
  • That would be a great start. "We are working on fixing XXX on your XXX phone. In the meantime, please be careful and follow these tips to keep your XXX phone secure ..."
  • I never even thought of that, just an info release alone would be 10k times better than the current situation. Posted via something running something it's not supposed to...
  • I read the wonderful back story of the Galaxy S2 update bricking phones. From that read, it doesn't sound like Samsung has any interest in software maintenance. With as many devices as they have and all the variations, they'd never to be able to keep up to date. They'd have to overhaul their entire ecosystem, and then it would only be for moving forward. And even then, it would be rely on integrity to not implement workaround and kludges. For any manufacturer, software support is an expense. Its not something that makes the company more valuable. From their perspective its more important to keep up in sales to stay ahead. And the average end user, who doesn't deal in the technical side of devices, won't care. The short sightedness of this pattern is that as consumers realize the actual cost of their phones, they might start holding onto their phones longer. Which in turn means they should factor in to their purchase considerations software support.
  • I'm good to go. Posted via Nexus 6 running on any data plan I want
  • Yep Posted via the Android Central App (Motorola Nexus 6 - US Cellular)
  • Who here without a nexus as a daily driver fell victim to a hole in their phones security.... I'll wait.... Posted via the Android Central App
  • I use that argument frequently. It's going on years without a notable incident. Still more money in hacking store POS systems and company severs. And considering the money and profit surrounding it, probably more money to be had hacking iOS. Posted via the Android Central App
  • Nothing has ever happened until the first time it happens. Posted via the Android Central App
  • That borders on a paranoid statement :) It is nonetheless true but it also about choosing whether or not to live in fear all the time.
  • No problems here Posted via the Android Central App
  • You good? I'm good. We have a boring phone with no features. Oh well. I need a cab. Posted via Nexus 6 running on any data plan I want
  • LoL Posted via the Android Central App
  • Yes you are right, we do have boring phones with no features. But hey we get to be beta testers! Posted via the Android Central App
  • This. We are all beta testers!
  • And this is the purpose of the press. Don't slaver over the latest Samsung, or Verizon Droid, etc. Call them out, keep calling them out, fail them on reviews until they prove otherwise, get the general press/media on board. Otherwise, they're complicit in the problem. Posted via the Android Central App
  • Absolutely right. But then the press should call them out on battery life, launching without the latest version of Android, poor sound, dim screens...
  • Look, this seems like a pretty easy fix. Google has recently started updating core programs through Google Play instead of the firmware update process, yes?
    Why can't more core files be updated the same way? This bypasses the carriers and even the manufacturers...At least on some levels...this can be done can update Chrome, GMAIL, messenger, hangouts, etc. Google had plans to build a modular phone, which is brilliant...want a nicer camera later? Done. Morr ram or faster cpu? Better flash or bigger battery? Done.
    This same idea should be applied to their OS. Posted via the Android Central App
  • Well the modular phone thing isn't going to take off. Posted from my Nexus 6/Nexus 7 2013/Surface Pro 3
  • Welp it may in countries like India.. The tip is not included! So tip your Uber driver.
  • See the trend in what you're saying? You can update software that Google has complete control over. Nobody else. Google could (in theory) break out, let's say, the Bluetooth stack. Write an updater program that can make sure you have the latest version installed, and put that updater app in the Play Store. But it won't work with Samsung, HTC, Lenovo, LG or any other company that changes the Bluetooth stack. These companies feel the need to alter the core system files so that they work better with their hardware. Often, they do work better. But Google can't fix any of it.
  • So how about this. Let Google force the issue. So they update a core file and give Samsung, LG or whoever a months lead time on it. Tell them simply that this is the way it is and if you don't comply with the fix, your phone may break. Update it anyway and put the oems feet to the fire Posted via the Android Central App
  • +100 Posted via the Android Central App
  • Because then Google screws every user except the 1.1 million with a Nexus phone. Purposefully screws the user to try and teach an OEM a lesson.
  • I get that but I would think that blowback would go back to the OEM at that point, Google gave them enough time. Tell them now that a year from now this is the way it is going to be.
  • That's a lot of beer Posted via Nexus 6 running on any data plan I want
  • because in the USA, carriers want to bloat the ecosystem. Somewhat real and hypothetical example, AT&T gets a deal from Facebook to add all the FB apps to an Android device. In order to ensure the deal, they install the app and prevent it from being uninstalled. Then to make it even more intrusive, they want to tie all their software ad generating software into the phone as well.
  • "A bonafide Android security apocalypse is a real possibility." - sadly, that's one of the possible ways it would take to get things to change. If/when someone manages to steal money from thousands or even millions of people through data stolen from phones via a known and patched bug that OEMs never implemented (either due to their own cost control measures, or due to carrier limitations) - lawsuits over negligence will happen. The OEMs and carriers will at that point finally see the financial risks of not changing things. But, it will take a lot of pain and loss for consumers for that to eventually happen.
  • Just posted pretty much the same sentiment. You are 100% correct. Posted via the Android Central App
  • Yep Posted via the Android Central App
  • The question is why just because it's my phone's software that means the update channels are so drastically different than my PC. Example: the machine I carry with me everyday is an Ubuntu pre-loaded system from Dell. The version of Ubuntu is based on 14.04 LTS but is Dell's custom version. My updates don't come from the OEM though they come directly from Canonical. Same if I were to buy a Windows machine from them or any other OEM. Why is it so drastically different when it comes to OS patches on my smartphone? Posted via the Android Central App
  • Because in the case of Windows, it isn't open source. No matter what the OEM is, it's still the same windows os. As for the custom version of Ubuntu, I can only assume that either Dell is paying them to maintain it, or it isn't modified enough to require any special updating. This is just a problem with open source software, as much as I love it. Not everyone who modifies it is responsible enough to keep it updated. There are plenty of abandoned open source projects, it's just that they're user base is probably smaller than say samsung's. That means fewer people are effected. Think of TouchWiz as a Linux distro, then imagine the project gets neglected, now it makes sense. Posted via the Android Central App
  • I think the other issue is that there isn't something like a DLL or other machine independent translation layer to a system like Android - every version has to be at least mostly hardware specific. If Google/someone can figure a system like this out that doesn't absolutely destroy system performance we may see easy manufacturer independent updates but we're stuck with variants of the current system until then. Posted via something running something it's not supposed to...
  • The issue with DELL is that they muck around with the hardware. I found when upgrading my DELL laptop to windows 10 that there are driver problems. The component manufacturers each their hands of it because DELL has tweaked the item. DELL say my laptop is not supported for Windows 10. But they've long ago stopped providing firmware or driver updates for Windows 7 that it shipped with.
    DELL also ship the machine with a lot of extra apps and programs.
  • This is the reason people get a iPhone they have their hand held, and some people like that, this is ridiculous. Posted from my Nexus 6/Nexus 7 2013/Surface Pro 3
  • Another big reason people get iPhone is because they buy crappy androids have a bad experience and then they think this is what Android is like and then become iOS fans. The tip is not included! So tip your Uber driver.
  • I've never bought a low end Android phone and I'm seriously considering iPhone in November. Android has problems, I'm tired. Posted via the Android Central App
  • I honestly don't blame you it's sad. Posted from my Nexus 6/Nexus 7 2013/Surface Pro 3
  • Count me as another. Posted via the Android Central App
  • Everyone I know buys the 16GB version of an iPhone and also has a lousy experience...The folks least able to manage 16GB are also the most likely to buy it..2000 photos later they wonder why they do not have room to update it to a new OS. Posted via Serenity
  • But Damm does that software just work See what I'm saying? Posted from my Nexus 6/Nexus 7 2013/Surface Pro 3
  • I find nothing that "works" in an iPhone anymore that Android or the BlackBerry I use. We use iPhones for work and I hate it. I reboot constantly. Apps that frequently crash. Email that stops working till I reboot. And the need for iTunes is more than enough for me to use anything in my personal life other than an iPhone. My wife has used iPhones for 5 years and cannot stand the poor battery life her iPhone gets. She also has to delete and reinstall her apps every couple of weeks. Every new OS download makes a phone a generation or 2 old worse in my experience. Nothing good here. The only complaint from other Android users I know is battery life. But then they all have everything going in the background all the time or are playing ridiculous games that call for heavy processing and they have a QHD display. Take that away? Easy full day use and up to 2 full days. Posted via Android Central App
  • I have never known anyone with an iPhone that has the problems you have. IPhones don't need the same resources as Android phones. I have more apps on my old iPhone 4 which has 8gb memory than on my HTC M8S which has 16gb and is almost full. The battery was asks much better on the iPhone 4 which would last me all day at work and a full night of web browsing, YouTube, emailing etc. The HTC M8S has great battery life if you have it on extreme power saving mode and don't use it. Once you start using it the battery percent drains in front of your eyes. This is with a battery of somewhere like 2600 mah compared with 1400 mah in the iPhone 4. My Nexus 5 also suffers from the well known battery issues. Even my Windows phone kills my android phones on battery life. I really want to like Android but the next time I upgrade my phone I will probably be going back to iOS. Posted via the Android Central App
  • The 16 GB iphone needs to go away already except for the economy models.
  • This issue isn't about having your hand held, it's about having a secure phone.
  • stop stereotyping ALL iOS users are dumb sheep. iOS is not about hand holding. I know that my iPhone WILL get the next security update, it WILL get the next OS, DAY ONE, not 6-12 months AFTER it's released. iOS my not be customizable as android, but when it comes to running apps, it does it as well as ANY android phone on the market, and Most of the time, even better since the code only has to be written for One OS, not 7500 variants taking the lowest common denominator into account. I use both android and iOS. iOS with a mac and using the ecosystem together makes for a very good experience.
    Besides customization and main screen widgets, android honestly doesn't have one damn thing that iOS doesn't have. all phones Run Apps. and iOS and iPhone does that extremely well. and it gets security and OS updates immediately. something android will NEVER be able to do unless every single person buys a Nexus. which will never happen.
  • This article is good, but should have given props where they are due. BlackBerry had updates out to the Priv before Nexus Posted via the Android Central App
  • Part of the reason I rock Nexus devices exclusively. I just retired the wife's first gen Moto G because it was on Lollipop and she refused to secure it with a PIN. Now she has a Nexus 5X and uses the fingerprint lock. I feel better... Posted via the Android Central App
  • My Priv is an amazing phone and with blackberry security it get updated every month. . Posted via the Android Central App
  • It must be a pretty good device. They sell very quickly on SWAPPA. Posted via my Nexus 6P!
  • I've gotten every monthly patch, because I bought a Nexus. They now work on every single carrier. If you care about security, you buy a Nexus, otherwise your cries fall on deaf ears.
  • DING DING DING DING DING it sucks but thats the deal for now. Posted from my Nexus 6/Nexus 7 2013/Surface Pro 3
  • The problem is Nexus devices have their limitations. I'd buy a Nexus 5X (because of the security benefit) if it had significantly better battery life since this is a key aspect of a phone for me. We need more choice of devices with frequent security updates.
  • Unfortunately, Nexus devices DON'T work on EVERY carrier, because some carriers require customized ROMs for service (like Republic Wireless). So customers are trapped between getting a service they want and getting a phone that they want.
  • So Jerry....... As of right now you believe people should buy a nexus? Posted from my Nexus 6/Nexus 7 2013/Surface Pro 3
  • I don't know, I think all of this security scare mongering is over blown on the cell phone front. Chicken Little. You have heard of Chicken Little? Right? Jk Posted via Nexus 6 running on any data plan I want
  • There are a couple others. The Priv comes to mind, or the Robin. Anything that's running software more than 30 days old should be a no-buy for anyone who values their personal data.
  • So, basically switch to iPhone if you want security and a good phone. That's the point I'm at. Android has truly gone to hell after 4.4. Posted via the Android Central App
  • Just be sure you always have a Nexus that's less than 3 years old.....
    No love for the 2012 Nexus 7
  • I'm not the type who's paranoid about security, so I don't really get excited over security updates, even though I would like to have them. For the record, my G4 right now is on the December patch. and there's no update for it. It's an unlocked unit too, which is puzzling. Sadly, the only way these OEMs are going to care is when a mega-security breach that takes advantage of a flaw happens and every device which doesn't have an update that patches that is affected. You'd get a Nexus if you really do want those security updates, but for me, I never do stupid crap on my phone, so I'm not too concerned over that. Plus, I need expandable storage, so a Nexus isn't really an option for my daily.
  • The whole solution is Google having strict policies with OEM's with software updates. It like if I buy Honor 5X today, in a year time it will never get another software update, which is bad. the amount of devices still stuck on Kitkat is abnormal Posted via the Android Central App
  • Thing is... I don't think Google could force OEMs to supply or guarantee updates. In fact, I've seen a few Android devices that didn't even have an option to check for updates... period... so what ever it's shipped with... that's it.
  • The likelihood of being affected by a hack or malware is so remote. Just be smart about things like not opening MMS from people you don't know and you'll be fine. Stop worrying. I have a nexus and am not even up to date. I can't be bothered unrooting just to patch my phone for something that's probably about as likely to affect me as winning the lottery.
  • +1 Posted via Nexus 6 running on any data plan I want
  • I would advise you to investigate the trust zone vulnerabilities as addressed in the January patch. The "it won't happen to me because I'm too smart" approach doesn't help you, or anyone else.
  • Thank you Jerry. People who think that these vulnerabilities can only impact others who are not careful or do stupid things have not read the descriptions of the vulnerabilities. Posted via the Android Central App
  • Has anyone actually been hacked and victimized because of these holes in security? I haven't seen an article that's stated that. Android Central App | S5 G900A kitkat root
  • A few people, mostly outside North America and western Europe. I do believe there was an issue that affected 10,000 - 50,000 users in Asia a few years back. As of now, nobody has really tried to go after users in the west. I'm not sure why.
  • I would wager that it's because Westerners mostly use iPhones. At my work I'm one of 4 people with Android. Everyone else has iPhone. Android has the largest market share because of China. Posted from my Nexus 6.
  • The same holds true for me. If the 14 in my office and 22 in my company, only four of us (18%) do NOT have an iPhone. Now scale that number up to a company with thousands of employees. Which US OS would be the more lucrative hack? Hasn't it been shown that iOS users are both more affluent on average and spend more money on and using their phones? Criminals go where the money is, yes? Though I suppose there is money in selling stolen personal identifying data too. Posted via the Android Central App
  • More than half the market in the US uses Android. In Canada and Europe the numbers are much higher. Android has the majority of market share just about everywhere.
  • Security patch level 01-01-2016 on my LG G-Stylo on Walmart family mobile aka T-Mobile. Honestly I never really look at this but good to see a somewhat recent date there. It's a relatively cheap phone but it performs well. Coming from the original LG Nexus 5 that broke after it fell on carpet (wtf) followed by a LG G3 that wasn't as good of a swimmer as me (lol) I am happy either way it is a solid little phone. Posted via the Android Central App
  • That's the most important update to have for now. January's patch fixed some really, really REALLY bad stuff.
  • My unlocked Moto X pure edition is only on the November 2015 security patch. Now I'm scared. Posted via the Android Central App
  • The thing I love about my iPhone 6s Plus is that it's always getting updates. This needs to happen on Android devices.
  • Unfortunately, that is not very likely to happen. The Android UX differs between devices, so it's not easy to update all of them.
  • Nexus 6p no problem!
  • My next phone will be a Nexus device. Peace of mind is priceless! Posted via the Android Central App
  • This is nuts! Come on companies, talk to us. I so envy Apple fans on this.
  • True Posted via the Android Central App
  • Buy a Nexus device. :-) Posted via the Android Central App (Motorola Nexus 6 - US Cellular)
  • I have a Nexus. But I don't want strictly Nexus devices from here on out. I like variety. That's precisely the reason I left Apple behind. Posted via the Android Central App
  • When will they pyridine an equivalent to the galaxy note series?
    Posted from my nexus 5 running Android 4.4.4, cos I detest the look and feel of Lollipop and Marshmallow!
  • The silence is eerie on this one
  • I dont even like to deal with anybody other than googles phone.. I will never understand why if u want android u will go with 3rd party devices software is garbage and u get little to no update but little patches to fix the crap software thats covering android os Posted via the Android Central App
  • Guess it's going to take a class action lawsuit once a security hole is exploited. Millions of at risk phones infected on the shoulders of empty promises from Samsung/LG/etc. Nice.
  • Had my Nexus 6P for a week and am completely updated. I love it!!
  • I think the article is spot on except that in my view, the even bigger culprits here are the carriers. Samsung at least did publish security updates within a week or two of Google if only for their latest devices, which isn't right. But the carriers "additions" to the phones are 99% bloatware that would not be impacted in any way by security updates, and 1% blocking or hiding features they'd prefer we don't use often like the ability to add mobile hotspot to the notification bar shortcuts. The fact that when I sold my AT&T S6 Edge+ for this very reason (and got a Nexus 6P), and at that time (late January), T-Mobile's variant of the S6 Edge+ was on December, Verizon's was on November, AT&Ts on October, but international unlocked versions were on January shows you where the main problem is. Ironically Samsung in this case has made many more changes to the OS than AT&T, yet they can sort it out in a few weeks. Let's not forget that the reason the iPhone has this advantage over non-Nexus Android phones is that Steve Jobs was smart enough to start selling the iPhone exclusively through AT&T on the condition that they not be allowed to add bloatware. It worked and by the time the exclusive was over, all of the other carriers understood that if they wanted to sell iPhones, they couldn't get up to their usual BS. At the time they justified all this bloatware crap by saying they were heavily subsidizing the phones with their multi-year contracts. But now most of them are getting rid of those. So what's their justification now? Nothing. Posted via the Android Central App
  • I think it's just pure laziness on their parts. That's precisely why you never see me use a carrier-branded device unless it doesn't work on my network.
  • Laziness in that they don't want to spend the time to code in the updates. But if the retards would just not have anything to do with the software at all, then there'd be no problem whatsoever. Posted from my Nexus 6.
  • Well said! Posted via the Android Central App
  • Exactly! They shouldn't be messing with the software to add their crap or remove features. Just sell the damn phone. A small loan of a broken G4
  • Word times 1,000. I think Samsung is in a position to play hardball with the carriers now. I know sales are shaky and it would be risky but going exclusive on the condition of no bloatware might work. It should try T-Mobile. Legere would love to brag about a no carrier bloat Note 6 only on his network. Posted via the Android Central App
  • I think Samsung already play hardball with carriers. Every phone shop I go into Samsung devices are on the main display area and sales staff always try to point you in the direction of a Samsung phone. Posted via the Android Central App
  • Thank you for posting this.
  • This. Exactly this. For all the choice Android is supposed to offer, this enormous failing means that my only choices are Nexus devices. Which means no SD slot or removable batteries. Plus this year's nexuses suck thanks to Qualcomm's mega-fail of pre-820 64 bit processors. It's like Google is begging me to get an iPhone and toss my garbage 5X out the window.
  • I ******* hate iOS but yah, at least the security updates and lack of bloat would be nice. Posted via the Android Central App
  • It is. I have both, but have been using my 6S+ more lately because it is so much easier to use touch ID for banking apps etc than entering in my user name and password every time I want to access. Even google wallet has touch ID on iPhone and not the 6P. I am going to keep ranting on this! Posted via my Nexus 6P!
  • ya touch ID for apps is so nice. I am using an iPhone 6S + as of now too. sold my note 5. I might come back to android on Note 6 or Nexus 7. the S7, G5 and iHTC m10 both aren't worth buying. Will see how the rest of year pans out.
  • They won't call it the Nexus 7. Because it's already taken by that ASUS-made Nexus tablet.
  • Yet another, in a long list of great Articles Jerry and I agree with each and every word. I long for the day that Google takes Android closed source and puts these pathetic, lazy, greedy oems in their rightful place......swirling down the toilet where they belong. Yes Samsung, this comment is directed toward you..
  • A good start would be to cut out the carriers and stop making custom versions of each phone. For one thing, carriers shouldn't be messing with the phones by removing and changing features that came with the phone. Also, if you switch carriers or go prepaid, then you can't get the ota unless there's a tool and firmware available for your phone that you can manually flash. Posted via the Android Central App
  • I really wish someone would explain to me why a company like Samsung for instance won't go to the carriers ad say to them, like apple did, "We will control the software, we will release updates, and you carriers can NOT restrict it. or modify our code in any way" In the early days of Android, the only way to get a device to share shelf space with an iPhone was to give the carrier control. This simply IS NOT the case anymore. The company that does that will get my money. Samsung is certainly big enough to do it. I have a Verizon V10 now, and I am probably selling it and getting a Nexus 6P. I'm tired of waiting for VZW to release patches and updates, not to mention being unable to unlock my bootloader/root my own device, which I PAY FOR without subsidy.
  • Because they can't say that. Samsung doesn't own or control Android, it is open source for the most part and anyone can make any changes they want.
  • Tons of Android device choices out there and in the end, you've got about as much choice as iOS users, possibly less; get a recent Nexus device or maybe a Priv. With Blackberry's timely monthly update sample size being extremely short, and the 5x being meh, the 6p seems the best choice, IF you want a phablet. I think Google's taking a risk here. The manufacturer's may harbor most, if not all of the blame, but if a massive security event hits a large amount of devices, the mainstream story will be Android is insecure, not Samsung devices, etc. I'm not a programmer and am not sure how Google could solve this. I realize aosp is open source, but they do have a ton of resources and something most manufacturers want, access to the play store for their devices.
  • Agreed. That's why I think Android is broken, not Samsung or LG or HTC or whoever. When something bad happens, Google gets all the blame. On the second part, if Google tried to block access to their services unless companies agreed to do things in the future, the courts in the US and the EU would go ape-shit. It's an easy way to fix it, but it can't happen.
  • How come Jerry gets to say ****? Posted via the Android Central App
  • Appreciate the reply and knowledge on the legal issues blocking services. I figured even if technically possible, it must be impossible for some other reason. Legal reasons are certainly compelling. Btw, your passion and work in these security articles and the podcast is exemplary.
  • I moved myself and and my wife to Nexus 6p phones and Project Fi a little over two months ago. I was just fed up with locked down branded phones that locked me into a big 4 carrier. I couldn't be happier! Is the N6p better than my Note 5, maybe not but the freedom that we have now tobuy service wherever we want and getting regular updates has been unbelievably nice. If the Nexus program were to stop making phones I would say adios to Android. It's become that important to us and I love Android but I've learned to hate branded, carrier locked phones and will not go that route ever again.
  • Well, my G4 just got an update from LG Bridge. It's the January patch. Strange that it isn't the February patch.
  • No updates at all on bridge for the V10. I'm starting to think this is a special snowflake phone and won't see timely updates if many at all. Oh well.
  • I recently got a V10. I love it but the nonexistent software support is making me question my decision a little.
  • Yeah, it's worrying. It's like "here you go! proof of concept device!" The it's all G5 all the time, forever and ever amen. Hope they don't abandon this thing. It's been crickets since launch with no leaks/signs of any additional support in the pipeline. Yeah, fingerprint update on AT&T/Verizon (T-Mo still MIA...) "Soon" for support of a $729 device is not confidence inspiring. Hope the second screen gimmick isn't a coding challenge that's stalling progress. Surely a security patch is easy, no? Guess we'll find out in time. I guess the inevitable mass security breach is what it will take to address the security update empty promises. I'm not talking "WHERES MAH MARSHMALLOW" I'm talking update your damn phone to be secure like you said you would.
  • Carrier branded? Posted via the Android Central App
  • Nope. Unlocked unit, model # H815 It's my second unit, since the original unit fell victim to the bootloop issue. A small loan of a broken G4
  • I know a solution. FORCE a guaranteed timeline of updates as a requirement for the Google Play Services. I mean, if Google successfully forced the "Powered by Android" tramp stamp at ALL our boot screens, and forced onto our devices Google+ which no-one uses, and a battery hog of a Play Services framework, who's to say they can't force the manufacturers to update to at least the new security patches before they get the GP Services suite. This Android with the AC App is On Fleek.
  • Funny, my two Nexus phones and N7 tablet seem to get the monthly updates right away...
  • Subtle. Yah, it's a Nexus bro. That's what they do. You are one smart dinosaur!
  • Trouble is Nexus devices are just like iPhones, no expandable memory, non replaceable battery, and no extra features such as split screen. They can't place an advert like the recent piano advert and then force stock Android on everyone. Posted via the Android Central App
  • Well if you have a Nexus on Project Fi then...... Posted via the Android Central App
  • Actually I think this article was typed in reference to motorola Posted via the Android Central App
  • Or, or, hear me out on this. It could just not be open source. Yeah, rooting would be harder. But it would mean that Google could just control the software. Throw in a theming engine so OEMs can still "differentiate", and give "trusted hardware partners" essentially root acess to add in their own custom OS level software features.
    And Google already knows how to make a pseudo-opensourced OS that OEMs can't **** with. It's called ChromeOS. So it's not exactly without precedent for them. Hell, a version or two later, when no one is using it except modders, they than open source the entire thing, ala Honeycomb. Basically, everyone wins. Now, watch as I get roasted above for heresy against doctrine or some such.
  • Aaand my Lenovorola Droid Turbo 2 hasn't received a single update, security patch or OS, since November when I got it. F*** Verizon, and I'll be going to an unlocked phone next time. Posted via the Android Central App
  • Well I don't know if this will make any difference to anyone but I get monthly security updates around the first of the month consistently on my Priv by BlackBerry so not all android devices in the same predicament Posted via the Android Central App
  • (Yawn ) Just get a Nexus.... Let's move on.
  • Not everyone wants a Nexus. A small loan of a broken G4
  • Exactly and I wasn't contemplating on changing phones !!! Posted via the Android Central App
  • Then not everyone wants the latest security updates and software. Stop expecting these bloatware OEMs to produce updates at the same amount of time add a Nexus, it hasn't happened and it never will.
  • I think it is unreasonable to expect OEMs to match the Nexus devices in terms of update timeline. That said, I think we should still hold them accountable on their commitment and also their lack of communication.
  • No deal I'm good Posted via the Android Central App
  • I would assume that a very large portion of the Android Central audience has a Nexus device so a lot us are getting those monthly security updates. Most of the people who are missing out couldn't even tell you what version of Android they're running much less what a monthly security patch is.
  • As the new owner of a galaxy note 5, I appreciate this article and AC asking the hard questions.
  • Nexus
  • I was at the store (ATT) buying my wife her new iphone 6s. Played with the priv. It was really nice and fast, for me at least. Knowing that it will get security updates on par with nexus devices has me looking at either the next blackberry or nexus for my phone replacement later this year. Posted via the Android Central App
  • I don't think I could ever go back to HTC, samsung or LG after owning a Nexus. The Nexus 5 spoiled me on updates rocking the Nexus 6p Now and loving it. Posted via the Android Central App
  • You nailed it Jerry. On the OnePlus forums they all want MM for the OP2. I tell that they should be clamouring for the security updates. We are stuck on December. Posted on my Nokia 3210.
  • LoL Android is secure by design. It's Linux Kernel. LG is rocking Android and will race past Samsung soon. Monthly security updates nice marketing gimmick, but NOT needed. Don't fall for it... via LG Flex2 with BlackBerry VKB
  • >Marketing gimmick SAY WHAT?! A small loan of a broken G4
  • LG's Flagships will never get monthly security updates. Why? Because it is NOT needed. If it is soooo important, believe me, they would:) My Flex 2 NEVER got any update and is a secure/unsecure as any other device out there. via LG Flex2 with BlackBerry VKB
  • "Will never get monthly security updates" You can't be serious..... I said above that my G4 HAS RECEIVED the January security update just recently. And who is the manufacturer of the G4? LG. What is the G4 to them? Their 2015 FLAGSHIP. The Flex isn't their flagship. It's an "innovation device" or a device that has bleeding edge tech that's available for normal consumers to buy. A small loan of a broken G4
  • Flex 2 IS the LG flagship. It's running circles around the G4, check it out! via LG Flex2 with BlackBerry VKB
  • Snapdragon 810 with 3GB DDR4 RAM , blowing away the G4. Only advantage i can think of is the camera, in every other category...the Flex 2 wins. via LG Flex2 with BlackBerry VKB
  • The V10 comes not even close, too. Only SD 808. Hands down, LG's Flex 2 is their Flagship. That's a fact. via LG Flex2 with BlackBerry VKB
  • *insert massive facepalm here* Does a flagship necessarily have to be all about specs? I thought we got over this nonsense since the 2013 Moto X. A small loan of a broken G4
  • Good lord, you are incredible. The only thing the 810 does better than the 808 is overheat. Your phone is a failed experiment that LG has pretty much forgotten. Posted via the Android Central App
  • Meh, he'll get over it once the honeymoon period ends.
  • No, the Flex 2 isn't. Here's why. - Aside from the processor and the RAM, it is inferior to the G4 in terms of general hardware - The Flex 2 doesn't have LG's current skin at launch - The Flex 2 isn't their priority device for updates. The flagship is always the priority device. - The G-line (originally Optimus G) was always intended to be their flagship line. The Flex was a niche device carved out in 2014 just to show off flexible display tech. May I remind you that LG once stated that the Flex is meant to be their low-volume product? A flagship is NOT a low-volume product. A small loan of a broken G4
  • reading and comprehension are Two very different things it seems. lol
    not needed. ... wow. some people love to live in their own little world. Surely you know WAY more than Jerry does.
  • When are people going to wake up and just buy nexus devices from now on. This will force other manufacturers to up their game or get out of this market all together. I appreciate the Nexus may not be sold all round the world, so I couldn't advise of the next best alternative, as a guess maybe Moto? They seem to be running near stock, but do they release monthly security patches? Posted via the Android Central App
  • Not really. Moto's current update timeline is mixed. They used to have one of the best. A small loan of a broken G4
  • Yeah just what I want, less choice. Posted via the Android Central App
  • Nope. Just switched to 6p from Moto X Pure Edition 2015 so I could move to Project Fi. I was happy with Moto's timeliness in updating to Marshmallow, but they are way behind in monthly security updates. They're basically nonexistent. I think it'll be a long time -- if ever -- before I own anything other than a Nexus. Posted via the Android Central App
  • Fortunately I own a priv, purchased direct from BlackBerry. So far I have received early, monthly updates. Good old BlackBerry
  • My lenovo yoga2 8inch tablet with lte is on Feb 1/2016
  • Why are there even carrier branded variants of essentially the same phone? This practice needs to stop ASAP as those variants only serve to muddy the update process and add unwanted bloat to phones.
  • On a related note, my suggestion a while ago about an annual update report card (for carriers and OEMs) still stands. If anything, such a feature is even more important now with monthly security updates.
  • Android Security Patch Level
    February 1, 2016
    Blackberry Priv
    T-Mobile Posted via the Android Central App
  • It will probably take an Android Apocalypse and a massive (successful) class action lawsuit to change anything. We live in a reactive world NOT a proactive one. Posted via the Android Central App
  • just buy a nexus or any phone with stock or nearly stock android, samsung will gave you IOS if that is what it take to keep selling, but we are sheeps and will keep buying the most shiny toy out there
  • Pay attention, Moto phones have nearly stock Android and they are behind on their security updates too. Not to mention not everyone wants stock Android. Android has always been about options, "just buy a Nexus" is the antithesis to what made Android popular in the first place and is NOT a solution. Posted via the Android Central App
  • I think u dont know what stock android is
  • Great solution unless a Nexus doesn't have all the features you want in a phone. That's like telling everyone to just go out and buy Camry's.
  • My AT&T G4 has the January 2016 security patch. I imagine that is ONLY because it just received Marshmallow. Posted via the Android Central App
  • I also received mine earlier. But mine is an unlocked unit, and interestingly, it's only on LG Bridge, not as an OTA. A small loan of a broken G4
  • The average user doesn't care about monthly security updates. The ones who care should get a boring Nexus device.
    No sdcard, no removeable battery, no infrared blaster, heck not even an FM Radio , i think. But hey, monthly updates! LoL via LG Flex2 with BlackBerry VKB
  • Whether the end user cares about it is irrelevant. Posted via the Android Central App
  • Why do manufactures feel the need to issue out 26 different phones unique to different markets in other parts of the world every year? Why not just issue out a low/med and high end phone each year. Seems to work very well for one manufacturer and would lower the headache of pushing updates.
  • This is exactly my thought android OEMS make way too many phones. Just have a low/med/high end phone that's sold globally so they can keep up with security updates and also OS updates when Google releases a new version of Android. The fact they release so many useless phones devalues android greatly. Posted via the Android Central App
  • I'd like to switch to a Nexus to avoid all this mess but I love the good quality audio that I get from my V10. I also do not want to go back to carrying a phone and a digital audio player. Damn it, why hasn't decent audio really taken off on Android? HTC updates their stuff and provides good quality audio, maybe I'll go back to my once favorite OEM. Posted via the Android Central App
  • The audio quality on my Nexus 5X is actually pretty good.
  • Nailed it. While I've loved my MotoX Pure (2014) the recent letdowns from Lenovo re:security updates will almost guarantee my next phone is a Nexus. Maybe that's why we have the rumors of Google putting more emphasis on marketing their Nexus models going forward and positioning them as high-profile premium handsets.
  • One of the reasons I'm either going Nexus or iPhone in November. Tired of it. Posted via the Android Central App
  • The solution is easy, dont buy phones from companys that dont update every month, do that and they will gave you stock android if u want, by the way nvidia update my shield tablet k1 and gave me the new security patch, january 2016, nice nvidia nice
  • Trying to start something
  • Another Mike Wallace wannabe making much ado about nothing.
  • So...hands up who has actually been directly affected by not getting a security update? What tragedy did it cause...if any?
  • Crickets... Posted via the Android Central App
  • Shift to Windows Mobile ;) Posted by a Lumia Lover.
  • Hey guys, im relatively new at all this software/hardware ****. Just and old cowbow from the PacificNorthwest. GS5 T mofo dec. Patch 5.1.1. Can't wait for.6.0....but ive learned alot reading and listening to peeps like u guys. My opinion, untill we get the carriers attention R /root and i 4 1 would l8ke to keep my warranty as long as i can. Untill WE AS A PPL GET SOMEONES ATTENTION, (money) the carriers will keep shoven .... up our ...s. and whoever said most folks don't even know what there phone is running is right ! Thar be the prob. But you boys got the right idea, so lets srart throwing our weight around as consumerers. File writtin compalaints with your carrier, teach your friends, fam, coworkers, any and all ! It's like your congressman, dude get a **** load of mail they start to pay attention, (cuz most peeps don't *****). Gotta say love you guys, I've learned sooo much in the last year. Like we said in days of old ...POWER TO THE PEOPLE.
  • 5.1.1 and 6.0 aren't your patch. Those are Android version numbers. The security patch can be found in the same area of your About Phone section. But it's designated by a specific date. I'm on Android version 6.0.1 and Security update dated February 1, 2016. Also, I feel like you might also enjoy the herb occasionally up there in the Pacific NW. Or maybe a cocktail or two. Perhaps even as you are typing your comments. In any case, WELCOME TO AC! We love everyone here.
  • Damn i thought in all my rambling i had to say sumpin stupid... no cmments ?
  • By Nexus devices that will help people! Only good Android devices out there are Nexus!
  • Ultimate fanboy alert Posted via the Android Central App
  • So are you saying the LG G4, Galaxy Note 5, BlackBerry Priv, HTC One M8, Moto X PE and some others are garbage Android phones in comparison?
  • Thanks for this article, Jerry. Important information here. I have had a nexus since the 4. Developers, why the holdup on getting imprint integrated into apps? Posted via my Nexus 6P!
  • Great article this is the reason am contemplating Nexus and Apple as my next device. Posted via the Android Central App
  • Would unlocked international versions receive timely security updates since they aren't carrier dependant? Guess we should not be blaming the carriers for everything that's not happening. Unfortunately the only alternative is the Apple ecosystem. No other OS'es are even worth considering. Maybe Nexus is the only way to go Nexus 6 on Android 6
  • Guys (and gals), Samsung Must be reading all this. My Samsung Galaxy Tab 4 7.0 just got the January security update. Posted using my Samsung Galaxy Tab 4 7.0 via the Android Central App
  • Lol, trust me. They are not reading this...
  • Yah, I can't back that one up lol.
  • I can. they read every day. Not because we're special, but because they read every major Android blog every day.
  • Monthly updates that's a joke not had anything since December 2015 Posted via the Android Central App
  • Just buy a Nexus 6p and call it a day. Posted via the Android Central App
  • that's like saying " just switch to iOS " you will get security updates and OS updates the minute they are released. even better.
    not everyone wants the giant huawei or iPhone.
  • Exactly. It defeats the entire purpose of Android. I'm not buying just Nexus phones from here on out. That's ridiculous. The simple answer is...Android needs to get it together, period. Posted via the Android Central App
  • It's simple really, I'm only buying iPhone or Nexus devices.
  • My simple solution is to get a Nexus or BB Priv
  • I was thinking the same thing actually. My HTC One M8 still has the December security patch because that's when I upgraded to Marshmallow (a couple days before Christmas to be more precise). Since HTC is not pushing out monthly security updates, I can't help but feel worried. When it's my time to upgrade later in summer 2016, I'm definitely going with Nexus or BB Priv as my choice for Android security in the future. I'm personally leaning more towards the Priv due to microSD card expansion and the keyboard (both physical and virtual).
  • My Nexus 5 is on the February update, of course, but I'm happy to say that my Asus ZenFone 2 is on the January one, and I should get the February one before the end of the month. So Asus is another in the tiny group of OEMs that's actually providing (relatively) timely security updates.
  • Hmmm, maybe if BlackBerry plays their cards right Google will buy BlackBerry 10 O/S and infuse Google Play Services into it making a secure and functional replacement for Android? Posted via the Android Central App
  • Google already has it's own OS, why should Google buy OS10 (QNX, that is?) You can use google play services (well, kind of) with BBOS10. Cobalt or Snap or something like that. But it not worked out, the android runtime lagged the OS and oh the battery life :/ OS10.2.1 was the best, without android runtime. No Apps but the OS is awesome :P via LG Flex2 with BlackBerry VKB
  • I just want the new emojis. Posted via the Android Central App
  • Well Apple has this on them at least. Posted via the Android Central App
  • Funny I get them the first day of each month on my BlackBerry PRIV Posted via the Android Central App
  • Everyone, including the mobile tech media, need to get some perspective. While security updates are important, they are but one layer of security on a computing device. Just because you may not get the latest updates doesn't automatically mean your device is now going to be exploited and you need to panic. To think that is simply a major over-reaction and a complete misunderstanding of the nature of vulnerabilities and how they could be exploited. But you guys carry on and continue pounding that drumbeat, the exact same one that's been beat to death for decades in the Windows world with pundits predicting the next security apocalypse, that has yet to materialize to this very day....
  • Completely agree. These guys are a tad out of touch with real life. take my parents - they both have completely free Android handsets for £10 per month (for a few hundred minutes, texts and MBs). They use talk, SMS and email - maybe an occasional Google search. That's it. It would be completely unrealistic to expect the manufacturers of these super cheap devices to pump out monthly security updates. And what risk are they actually exposed to? I'd be much more worried about their XP laptop to be honest!
  • Getting them on the Priv so far Posted via the Android Central App
  • I honestly don't unterstand why people are still angry and surprised about this. All of you can change the industry by not taking your money to those slow ass companies. I bought an unlocked Nexus 5x and couldn't be happier.
  • Seems like Nexus or BlackBerry Priv are the only two good Android phones to get if you want to make sure your phone is secure. Here's hoping by the time my Passport dies, I will have some more choices. Posted via the Android Central App on my BlackBerry Passport
  • My Nexus 5 shows the security patch updates in the about phone section in settings. However neither my HTC M8S not my Moto E show this information. Does this mean that neither are getting these patches ? Posted via the Android Central App