SomeHTC Android Smartphones Susceptible to Massive Security Vulnerability

From DailyTech: It's no secret that Android smartphones are starting to take over the market, as they are available from a number of different manufacturers, come in a number of different form factors, and can be had at multiple price points (ranging from high-value to high-dollar). When its comes to the most popular Android smartphones around, companies like Samsung, Motorola, and HTC often spring to mind.

Today, however, those using some of the latest HTC smartphones may be in for a rude awakening thanks to a massive security breach discovered by the folks at Android Police. According to Artem Russakovskii, devices like the EVO 3D, EVO 4G, and Thunderbolt (among others) can fully reveal private user information if any app requests android.permission.INTERNET.

Any app that calls out for the INTERNET permission has access to the following, reports Russakovskii:

the list of user accounts, including email addresses and sync status for each
last known network and GPS locations and a limited previous history of locations
phone numbers from the phone log
SMS data, including phone numbers and encoded text (not sure yet if it's possible to decode it, but very likely)
system logs (both kernel/dmesg and app/logcat), which includes everything your running apps do and is likely to include email addresses, phone numbers, and other private info

All of the information is stored thanks to new logging tools that HTC has introduced on its newer smartphones.

View: Article @ Source Site