Yesterday, the Android market had 21 applications pulled by Google and force-removed from users' devices due to them containing an exploit called 'rageagainstthecage'. And while Google successfully and quickly pulled the software from the market and from devices ("kill switch"), those 21 apps were downloaded over 50,000 times (bigger market, bigger target).
It was bound to happen. We've been bombarded for years about the threat of computer viruses, exploits, Trojans, etc. and if there was ever a viable target today, Android would be it. It has an open market (no approval processes), huge market share and one heck of a hacker community. How serious is the exploit? Our sister site Android Central says:
rageagainstthecage...opens the door for the app to do anything with your data -- like send it to a remote server. Of course with root it can do much worse as well.
If you installed any of these applications, they should have been pulled off your phone, but that's not enough. You need to do a full system wipe and reset your phone completely, the data wipe and reset from settings may not be enough. This means ODIN, RUU's, .sbf files or a trip to your carrier store if this is beyond your capabilities.
Mind you, all 21 apps were uploaded by one person. Going further, Android Police, who originally broke the story says
...it steals nearly everything it can: product ID, model, partner (provider?), language, country, and userID. But that’s all child’s play; the true pièce de résistance is that it has the ability to download more code. In other words, there’s no way to know what the app does after it’s installed, and the possibilities are nearly endless.
Egads. While we hope nothing too nefarious has happened, it goes to show that having a regulated Marketplace, like Windows Phone, where the code is checked for such things can be quite valuable when compared to what Android users are now facing. Will this become a regular occurrence? What will Google do to address the problem? It will be interesting to see in the next couple of days the fallout from this breach.
The first two Snapdragon 7c PCs are here, and they start at $299 with LTE
Along with a slew of announcements for the education market this week, Microsoft debuted the first two PCs to be powered by Qualcomm's Snapdragon 7c platform. Both are targeted at the education market, and they bring LTE for as little as $299.
Need a laptop with a Thunderbolt 3 port? Every PC here deserves a look.
Looking for a new laptop that has Thunderbolt 3 ports? Well, you're in luck, as we've rounded up what we think are the best Thunderbolt 3 enabled laptops available to buy today.
Windows 10 build 19546 arrives for Fast ring with graphing calculator
Microsoft pushed out another new Windows 10 Preview build for Windows Insiders on the Fast ring today. This build brings the build number up to 19546, and it includes a new graphing mode for the Calculator app.
These Black Friday deals let you grab some excellent apps at a discount
Several app developers have jumped on the Black Friday train, letting you saving money on some of the best apps in the Microsoft Store.