Skip to main content
  1. Home
  2. Mobile

HTC phones: giant security hole discovered

By
Image used with permission by copyright holder

HTC inadvertently opened a wide security hole in some of its most-recently released phones, like the EVO 3D and EVO 4G. The vulnerability, discovered by the crew at Android Police, potentially exposes a broad range of private user data, including email addresses, GPS locations and phone numbers.

The security hole appears to be a residual consequence of HTC’s latest update to the phones, which recently received a new logging tool and seems to be where the problem first showed up.

Recommended Videos

The problem exists in any app that connects to the Internet, specifically ones that send out the android.permission.INTERNET request, which, according to Android Police, “is normal for any app that connects to the web or shows ads.” Ordinarily, apps that send out this request can only find out whether you are connected to the Internet. With the security hole in place, all apps that send out such a request are found to have access to:

  • list of users accounts, email addresses and sync status for each address
  • last recorded network and GPS location, and a short list of previous such locations
  • phone numbers from the phone log
  • SMS data, including phone numbers and encoded texts
  • system logs (which may give access to additional personal data)

Amazingly, the list goes on and on. Android Police also found that notifications in the notification bar, IP addresses, CPU data, battery info, a list of installed apps and more are also exposed by the security hole. (For the detailed list, visit Android Police‘s post here.)

Related

At present, the only way to patch the hole yourself, HTC user, is to root your phone and manually remove the “APK” file that logs all your actions. Unfortunately, rooting is a process that can be difficult for users who aren’t familiar with the process. But given the serious nature of the security hole, be assured that HTC will release an official patch of its own very soon. Until then, be careful what apps you download to avoid handing over your info to malicious entities.

Editors' Recommendations

Topics
Andrew Couts
Andrew Couts
Former Digital Trends Contributor
Features Editor for Digital Trends, Andrew Couts covers a wide swath of consumer technology topics, with particular focus on…
Huawei’s gorgeous Pura 70 phones just got expanded availability
Huawei Pura 70 pink, green, white, and black colors.

Huawei Pura 70 Huawei

After being announced for China in mid-April, the Huawei Pura 70 series is now confirmed for the EU market. Those in the European market can expect to preorder the Pura 70, Pura 70 Pro, and the top-tier Pura 70 Ultra starting May 2 for 999 euros, 1,199 euros, and 1,499 euros, respectively. This pricing is in line with what we saw in China, with the Ultra coming in at 9,999 yuan ($1,400) and the base Pura 70 at 5,499 yuan ($760).

Read more
The Honor Magic 6 RSR is my new favorite Android phone of 2024
Someone holding the Honor Magic 6 RSR outside.

There's no doubt that 2024 has already been an exciting year for Android phones. Samsung wowed us with the Galaxy S24 series at the beginning of the year, the OnePlus 12 and 12R are two of the best phones available right now, and Google is expected to impress later this month with the Google Pixel 8a.

But for the last few weeks, I haven't been thinking about any of those phones. Why? Because I've been using the Honor Magic 6 RSR. After launching in China this past March, the Magic 6 RSR is now available in the EU, and that's allowed more folks than ever to get their hands on the phone. And that's great, because the Honor Magic 6 RSR has quickly become my new favorite Android phone of 2024.
It has some of 2024's best smartphone hardware

Read more
5 phones you should buy instead of the Samsung Galaxy S24 Plus
A Samsung Galaxy S24 Plus laying on concrete.

Looking to upgrade your phone this year? You may be considering Samsung’s new Galaxy S24 Plus, which is the middle child of the S24 lineup. Given how solid the S24 Plus is, that's not a bad idea at all.

But is the Galaxy S24 Plus the best phone you can get? Maybe not, as there are plenty of other great choices that you can choose from as well. Here are some of the best alternatives to the Galaxy S24 Plus that you should take a look at before spending your hard-earned dollars.
Samsung Galaxy S24 Ultra

Read more