Skip to main content
  1. Home
  2. Mobile
  3. News

Google-commissioned security report paints a bleak picture of Android

David Curry
By

Android 6.0 Marshmallow.
Image used with permission by copyright holder
The lack of fast updates across the Android ecosystem means that more than 80 percent of device owners are at risk to at least one critical vulnerability. That’s according to a study from the University of Cambridge, which was partially funded by Google.

The study shows that while Google can make the latest version of Android safe from all vulnerabilities, its inability to get the updates out to every Android phone in a timely fashion makes most of the ecosystem unsafe. Even being one or two patches behind could put smartphone owners at risk of vulnerabilities like Stagefright, which is capable of taking over devices and infecting them with malware.

android-device-security
Image used with permission by copyright holder

In the study, each mobile vendor was graded based on security with scores from 1 to 10. Nexus devices ranked the highest at 5.2, followed by LG at 4.0, and Motorola at 3.1. Samsung came in fourth at 2.1, followed by Sony, and finally, HTC.

Recommended Videos

Samsung and LG both confirmed plans to stick on course with Google’s monthly updates, but HTC claimed that goal was unrealistic due to carrier testing. AT&T and Verizon Wireless have both been accused of routinely pausing updates, and blocking certain features like Google Wallet on Android devices.

Related

Having a phone that’s vulnerable to attack might sound terrifying, but most critical vulnerabilities can only be exploited if the user downloads or clicks on something that is laced with malware. That’s why malware attacks tend to only reach a few hundred or thousand devices. Of course, some serious bugs like Heartbleed and Stagefright do pose risks to more devices.

Naturally, Android device owners would much rather have a system that is 100-percent safe. Google is working with device partners and carriers to ensure updates, especially security patches, are delivered at a speedy rate. Things just don’t always go as planned.

Android’s rival iOS isn’t completely off the hook when it comes to vulnerabilities, either. The most recent panic in China happened only a week ago, when an old video player returned and took over iPhones. A week before that, Chinese developers Baidu and Tencent were both caught using a faulty version of Xcode, infecting iPhone owners in China with malware.

However, the main difference is that Apple can immediately shore up the vulnerability on every iPhone that supports the latest version of iOS (which is the vast majority of iPhones) with a software update. Google isn’t able to do that because it’s phones are made by third-party manufacturers, whose own User Interfaces often slow down the update process, and the carriers who support these phones dictate when updates pass to individual phones.

Editors' Recommendations

Topics
David Curry
David Curry
Former Digital Trends Contributor
David has been writing about technology for several years, following the latest trends and covering the largest events. He is…
Google Pixel 9: news, rumored price, release date, and more
Front and rear profile of leaked Google Pixel 9 renders.

The Google Pixel 8 and Pixel 8 Pro are Google's latest and most powerful devices, but it won't be that way for long. Rumors of the Google Pixel 8a mean this pair of flagships will be supplanted as the latest Google phones fairly soon — but they'll be able to hold on to the title of "most powerful" for a little while longer. The Google Pixel 9 range, while definitely on the way, isn't due to arrive any time soon.

But when it does, it's sure to be a pair of blockbusters. Leaks for the Pixel 9 family are a little thin on the ground at the moment, but it seems as if Google is planning on making some big changes this time around. If leaks are correct, we expect a new look and some exciting new AI features that go beyond what we've seen before.

Read more
When is my phone getting Android 14? Here’s everything we know
Android 14 logo on the Google Pixel 8 Pro.

Android 14 is out now, and as usual, the first to get it was Google's own Pixel phone family. Not to be undone, Samsung pushed out its version of Android 14 — One UI 6 — after a relatively short beta period and has seemingly now completed its Android 14 rollout. Nothing, the new phone company on the block, has done the same. Now, we're just waiting for more news from Motorola, who has become the stick in the mud holding everyone up.

If you're rocking an Android phone that is still stuck on an old build, here's everything we know about official Android 14 rollout plans for all major brands available in the U.S. market. We recommend using your device's Find on page function to pinpoint your device on this list.

Read more
Android 15 has two hidden features you’re going to love
The Android 15 logo on a smartphone.

Android 15 is this year's big Android update, and based on what we've seen so far, it's going to be pretty tame. Just like Android 14, Android 15 isn't trying to overhaul or reimagine Android. Instead, it's all about fine-tuning things.

However, that doesn't mean there's nothing cool going on. I've been playing with the Android 15 developer preview for a little while now, and in doing so, I've stumbled across two underrated features that I think a lot of people are going to love.
Notification cooldown is a lifesaver

Read more