Millions of smartphones and tablets running Google Inc’s Android operating system have the Heartbleed software bug.
While Google said in a blog post on Wednesday last week that all versions of Android are immune to the flaw, it added that the “limited exception” was one version dubbed 4.1.1, which was released in 2012.
Security researchers said that version of Android is still used in millions of smartphones and tablets, including popular models made by Samsung Electronics Co, HTC Corp (宏達電) and other manufacturers. Google statistics show that 34 percent of Android devices use variations of the 4.1 software. The company said that less than 10 percent of active devices are vulnerable.
Over 900 million Android devices have been activated worldwide.
The Heartbleed vulnerability was made public last week and can expose people to hacking of their passwords and other information. While a fix was simultaneously made available and quickly implemented by the majority of Internet properties that were vulnerable to the bug, there is no easy solution for Android gadgets that carry the flaw, security experts said.
Even though Google has provided a patch, the company said it is up to handset makers and wireless carriers to update the devices.
“One of the major issues with Android is the update cycle is really long,” said Michael Shaulov, chief executive officer and co-founder of Lacoon Security Ltd, a cybersecurity company focused on advanced mobile threats.
“The device manufacturers and the carriers need to do something with the patch, and that’s usually a really long process,” he added.
Microsoft Corp said on Friday that the Windows and Windows Phone operating systems and most services are not impacted.
“A few services continue to be reviewed and updated with further protections,” Microsoft Trustworthy Computing director Tracey Pretorius wrote in an e-mailed statement.
Apple Inc did not respond to messages for comment.
The Heartbleed bug, which was discovered by researchers from Google and a Finnish company called Codenomicon, affects OpenSSL, a type of open-source encryption used by as many as 66 percent of all active Internet sites.
Still, there are no signs that hackers are trying to attack Android devices through the vulnerability, as it would be complicated to set up and the success rate would be low, said Marc Rogers, principal security researcher at the San Francisco-based Lookout Inc.
Individual devices are less attractive because they need to be targeted one-by-one, he said.
“Given that the server attack affects such a larger number of devices and is so much easier to carry out, we don’t expect to see any attacks against devices until after the server attacks have been completely exhausted,” Rogers wrote in an e-mail.
SEMICONDUCTORS: The German laser and plasma generator company will expand its local services as its specialized offerings support Taiwan’s semiconductor industries Trumpf SE + Co KG, a global leader in supplying laser technology and plasma generators used in chip production, is expanding its investments in Taiwan in an effort to deeply integrate into the global semiconductor supply chain in the pursuit of growth. The company, headquartered in Ditzingen, Germany, has invested significantly in a newly inaugurated regional technical center for plasma generators in Taoyuan, its latest expansion in Taiwan after being engaged in various industries for more than 25 years. The center, the first of its kind Trumpf built outside Germany, aims to serve customers from Taiwan, Japan, Southeast Asia and South Korea,
Gasoline and diesel prices at domestic fuel stations are to fall NT$0.2 per liter this week, down for a second consecutive week, CPC Corp, Taiwan (台灣中油) and Formosa Petrochemical Corp (台塑石化) announced yesterday. Effective today, gasoline prices at CPC and Formosa stations are to drop to NT$26.4, NT$27.9 and NT$29.9 per liter for 92, 95 and 98-octane unleaded gasoline respectively, the companies said in separate statements. The price of premium diesel is to fall to NT$24.8 per liter at CPC stations and NT$24.6 at Formosa pumps, they said. The price adjustments came even as international crude oil prices rose last week, as traders
POWERING UP: PSUs for AI servers made up about 50% of Delta’s total server PSU revenue during the first three quarters of last year, the company said Power supply and electronic components maker Delta Electronics Inc (台達電) reported record-high revenue of NT$161.61 billion (US$5.11 billion) for last quarter and said it remains positive about this quarter. Last quarter’s figure was up 7.6 percent from the previous quarter and 41.51 percent higher than a year earlier, and largely in line with Yuanta Securities Investment Consulting Co’s (元大投顧) forecast of NT$160 billion. Delta’s annual revenue last year rose 31.76 percent year-on-year to NT$554.89 billion, also a record high for the company. Its strong performance reflected continued demand for high-performance power solutions and advanced liquid-cooling products used in artificial intelligence (AI) data centers,
SIZE MATTERS: TSMC started phasing out 8-inch wafer production last year, while Samsung is more aggressively retiring 8-inch capacity, TrendForce said Chipmakers are expected to raise prices of 8-inch wafers by up to 20 percent this year on concern over supply constraints as major contract chipmakers Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) and Samsung Electronics Co gradually retire less advanced wafer capacity, TrendForce Corp (集邦科技) said yesterday. It is the first significant across-the-board price hike since a global semiconductor correction in 2023, the Taipei-based market researcher said in a report. Global 8-inch wafer capacity slid 0.3 percent year-on-year last year, although 8-inch wafer prices still hovered at relatively stable levels throughout the year, TrendForce said. The downward trend is expected to continue this year,
RSS