HTC is a fix, it is working fast in releasing an urgent update for its smartphones to fix a vulnerability issue which puts a users personal information at risk. This flaw was discovered by “Android Police blog” . The security flaw is such that a user’s GPS location and call logs could be easily accessed by net-enabled apps.

HTC after a through investigation also admitted the flaw and that it could be “exploited by a malicious third-party application”. HTC said it would notify affected users of the update automatically.

[box_dark]”HTC is working very diligently to quickly release a security update that will resolve the issue on affected devices,” a spokesperson said.[/box_dark]

Although not confirmed, it is understood that the EVO 3D, EVO 4G, Thunderbolt and Sensation range are all ate risk. Until the fix is released HTC urges users to be cautious when downloading , using, installing and updating applications from untrusted sources.Users will be able to download the fix over-the-air.

The flaw is due to a particular file which contains a lot of personal information like GPS location history, SMS data, phone logs and e-mail accounts. Apps can gain access to this file by requesting connection to the internet. According to HTC there has been no reported cases of information theft as of now. The patch will be released after a short period of testing and HTC urges all users to download it promptly.

Artem Russakovskii, the man who made this blog  public wrote: “While I applaud HTC’s desire to fix the situation quickly, I do have to wonder whether the patch will simply apply some sort of an authentication scheme to the service while letting it continue collecting the same kind of sensitive data to be potentially reported back to HTC or carriers.”


Source:BBC Tech