Two research consultants with Accuvant Labs have discovered a security vulnerability that affects over 2 BILLION phones, including the HTC One M7 and the Blackberry Z10. The vulnerability, which they will officially present at next week’s Black Hat security conference, involves an open-source device management tool, used by many many vendors and carriers for OTA updates, remote device wipes, and more. In light of the recent accolades for security that have been heaped on (and trumpeted by) BlackBerry, this is a potential black eye that could affect their comeback if not remediated quickly. Consumers almost expect Android to be insecure, these days, but BlackBerry will be crucified in the media for the slightest potential soft spot.
***CAVEAT: Since more specific details have not yet been released by the discoverers, it is currently unknown which Z10 OS versions and/or which carriers are, or were, vulnerable. Since specific iOS version and carrier details *were* published, I felt it safer to assume, for the moment, that a general statement of warning about the Z10 was warranted.
Read the entire article at Wired.com.