Skip to main content

Is the Heartbleed bug in your Android? 80 phones/tablets that could be vulnerable

list of android phones vulnerable to heartbleed bug galaxy s3 and lg intuition

The Web has largely fixed itself from the major Heartbleed OpenSSL bug discovered on April 7, 2014. From the reports we’ve seen, few major websites are still vulnerable to the bug, and many of the apps and services we use have been patched as well. Unfortunately, there’s one festering Heartbleed wound that isn’t fixed, and won’t get patched anytime soon. As Google admitted on its own blog, phones and tablets running Android 4.1.1 are vulnerable to Heartbleed bug hack attacks.

We’ve tried but can’t find a good listing of what phones and tablets might be vulnerable, so we decided to make one ourselves. Below you’ll find a near-complete list of devices we think could potentially have the Heartbleed bug. This is based on information from Wikipedia, wireless carrier websites, and all over. We’ll continue to update and fix this list as readers, manufacturers, and carriers respond to our requests for info. We’ve included any devices we believe could possibly have Android 4.1.1 on them. Recent estimates pin the number of vulnerable devices at about 50 million.

Related Videos

IF YOUR DEVICE IS LISTED AS VULNERABLE:

  • Go to Settings > About phone to see if you’re running version 4.1.1.
  • Run the Lookout Mobile Security app
  • If you’re vulnerable, check for updates
  • If there are no updates, take the phone offline and remove all sensitive information from it
  • Avoid browsing the Web, using email, or doing anything serious on the device until a fix is issued. “If you have a vulnerable device and there’s no fix available for you, I would be very cautious about using that device for sensitive data,” Lookout’s Marc Rogers told Ars Technica. “So I would be cautious about using it for banking or sending personal messages.”

Most likely, an attacker might try to lure you into an infected website via email or some other method, trying to use the Hearbleed vulnerability to extract information from Web browser tabs. We recommend you use the Google Chrome browser, if it’s available on your device, and update it. Be sure to download the Lookout Mobile Security app to see if your device is vulnerable.

Android phones that could be vulnerable to Heartbleed (all carriers)

These are phones that span across carriers and countries. It’s not a complete list. We’ve mostly tackled only the big manufacturers. Let us know of omissions by commenting.

 

Launched With

Update Available?

Advice

Asus PadFone Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Asus PadFone 2 Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One S Android 4.0 Yes, to 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One X  Android 4.0 Yes, to 4.1  DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One XL Android 4.0 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
HTC Evo 4G LTE Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
HTC Desire X Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
HTC One X+ Android 4.1 Possibly  DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Optimus L5 Android 4.0 Possibly  NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus L7 Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus L7 Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus Vu (LG Intuition) Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus 4X HD Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus G Android 4.0 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
Motorola Atrix HD Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid 4 Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid Razr Android 2.3 Yes, to 4.0 (or higher)  NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid Razr Maxx Android 2.3 Yes, to 4.0 (or higher)  NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid Razr I Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION 
Motorola Droid Razr HD Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
Panasonic Eluga Android 4.0 Unlikely NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Nexus S (Google) Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Mini 2 Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Ace Plus Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Ace 2 Android 2.3 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy W (i8150) Android 2.3 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Chat Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Nexus Android 4.0 Yes, to 4.3 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy S Duo Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy S Advance (i9070) Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S2 Android 2.3 Yes, to 4.1 or 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S3 (Non-LTE) Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy S3 (LTE) Android 4.1.1 Yes, to 4.1.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note Android 2.3 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Note 2 Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S3 Mini Android 4.1.2 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Tipo Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Miro Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia E Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia Go Android 2.3 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Sola Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia U Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia P Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia Ion LTE Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Acro S Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia S Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia SL Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia J Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia V Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia T Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Z Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia ZL Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia ZR Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia Z Ultra Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia SP Android 4.1 Yes, to 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

Android tablets that could be vulnerable to Heartbleed

These are tablets span across carriers and countries. It’s not a complete list. We’ve mostly tackled only the big manufacturers. Let us know of omissions by commenting.

  Launched With Update available? Advice
Acer Iconia A700 Android 4.0 Yes, to 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Acer Iconia A110 Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Asus Transformer Prime (TF201) Android 4.0 Yes, to 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Asus Transformer Pad 300 Android 4.0 Yes, to 4.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Asus Transformer Pad Infinity Android 4.0 Yes, to 4.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Asus FonePad Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Cube U30GT 2 Android 4.1.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HP Slate 7 Android 4.1.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Lenovo A2109 Android 4.0.4 Yes, to 4.1.1 DO NOT UPDATE, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Tab 2 7.0 Android 4.0 Yes, to 4.2.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Tab 2 10.1 Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Note 10.1 Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Toshiba Excite 10″ Android 4.0 Yes, 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

AT&T phones on sale now that could be vulnerable to Heartbleed

 

Launched With

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1.1  Yes, 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

T-Mobile phones on sale now that could be vulnerable to Heartbleed

 

Launched With

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One S Android 4.0 Yes, Version 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1.1  Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

Verizon phones on sale now that could be vulnerable to Heartbleed

Verizon

Launched with

Update Available?

STATUS

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Kyocera Hydro Elite Android 4.1 Not that we know of DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Enact Android 4.1.2  Not that we know of NOT VULNERABLE (PROBABLY), CHECK VERSION
Casio G’zOne Commando Android 4.1.2  Not that we know of NOT VULNERABLE (PROBABLY), CHECK VERSION
Droid Razr M Android 4.1 Not that we know of DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Spectrum (Used) Android 2.3  No  NOT VULNERABLE, BUT YOU NEED A NEW PHONE
LG Revolution (Used)  Android 2.2  No  NOT VULNERABLE, BUT YOU NEED A NEW PHONE

Sprint phones on sale now that could be vulnerable to Heartbleed

 

Launched with

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1 4.4.2 in late April DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S3 Android 4.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
Motorola Photon Q Android 4.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Viper (new and used) Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION 
Kyocera Hydro Edge Android 4.1  Not that we know of DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC EVO Android 4.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Kyocera Torque Android 4.1  Yes, Version 4.1.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Replenish (Used) Android 2.2 No NOT VULNERABLE, BUT YOU NEED A NEW PHONE
Samsung Epic 4G (Used) Android 2.3 No NOT VULNERABLE, BUT YOU NEED A NEW PHONE 
Nexus S 4G Android 4.0 Yes, Version 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

U.S. Cellular phones on sale now that could be vulnerable to Heartbleed

 

Launched with

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Huawei Ascend Y300 Android 4.1.1 No  DANGER! REMOVE SENSITIVE DATA, AVOID WEB

Before you begin, please read our How to Protect Your Device from Heartbleed Guide. It will explain more about the Heartbleed bug. We also have a robust list of Websites Affected by HeartbleedApps Affected by Heartbleedand Video Game Services Affected by Heartbleed.

If you have suggestions, please help us update this list. If you know someone who owns one of these affected phones, help them out and inform them.

Editors' Recommendations

What is 5G UW? The real meaning behind the icon on your phone
Woman holding up smartphone with speed test results on Verizon 5G Ultra Wideband network.

You've probably noticed that there's been much more hype around 5G than for any of the wireless technologies that came before. Some of that is just marketing, of course; we are living in an increasingly connected era, and there are far more people toting smartphones now than there were in 2012 when 4G/LTE was just beginning to go mainstream. However, it's also not an exaggeration to say that with considerably faster speeds and the ability to handle many more devices, 5G is a much bigger step into the next stage of global connectivity. You've also probably noticed it yourself with a "5G UW" icon at the top of your phone.

As with most new technologies, 5G comes with some new challenges for both carriers and consumers. One of the most significant of these has been working out the best way to deploy 5G services across the much wider range of frequencies that it's capable of operating on. This wasn't nearly as significant a problem in the days of 3G and 4G/LTE services, which all operated in a much narrower range of radio spectrum.

Read more
iPhone 15: release date and price predictions, leaks, rumors, and more
iPhone 15 render by 4RMD

As great as the iPhone 14 and iPhone 14 Pro are, they're both already a few months old at this point, and the rumors about the iPhone 15 are well underway. We still have several months before the iPhone 15 models drop, though, as Apple usually makes iPhone announcements in the fall. In other words, there's still a lot of time for rumors to circulate around the internet.

We're keeping all of the reports and rumors of the iPhone 15 here in a single place for your convenience, but do remember to keep in mind that these are all still just speculation. Nothing is final until Apple confirms it during an official announcement. Still, a lot of the rumors give us an idea of what to expect each year, which is unfortunate if you like surprises. Here's everything we know of the iPhone 15 so far!
iPhone 15: models

Read more
These Android apps are spying on you — and there’s no easy way to stop them
Illustration of a giant eye stalking through a phone

Android’s security woes need no introduction, but another threat that hasn’t received its fair share of awareness relates to spyware and stalkerware apps. These apps can secretly be installed on a victim’s phone to monitor their activity and can be exploited to harass victims of domestic abuse and engage in online stalking. All someone needs is physical access to the victim's phone to install these apps, which is not too difficult in cases of domestic abuse.

Call it an app-fueled version of AirTag stalking, but on steroids, because these spyware apps can steal everything including messages, call logs, emails, photos, and videos. Some can even activate the microphone and the camera, and secretly transfer these recordings to a remote server where the abuser can access it. Since Google Play's policies don't allow stalking apps, these apps are sold via third-party websites and need to be sideloaded.

Read more