BlackBerry is working to plug an interesting security hole found by Frank Büttner at ABS Team GmbH in Germany. He had a BlackBerry 10.2.1 device on a BlackBerry Enterprise Server and found that Android apps could access his business secured contacts. These contacts are supposed to be inaccessible from Android apps like Skype since Android Runtime apps are not allowed in the work partition.
This sort of access breaks the BlackBerry Balance model so it is very interesting to see that they only noticed it now after the OS version 10.2.1.537 shipped. BlackBerry has already confirmed that they have fixed the vulnerability and are waiting for carriers to push out the OS update to plug the hole. This is yet another reason why BlackBerry needs to find a way to push out OS updates without carriers.