The Washington Post

HTC confirms security flaw; Fix in the works

HTC confirmed in a statement that it has found a “vulnerability that could potentially be exploited by a malicious third-party application” in its software. According to the company, it has not heard of any customers being affected by the security hole, and is working to release a security update to address the problem.

The vulnerability, first found by Android Police, allows apps that are authorized to connect to the Internet to see information from the company’s HTCLoggers service, which reports device data back to the company. Therefore, these apps can access data such as call history, location data, e-mail addresses and system logs and malicious apps could easily broadcast that information to the Web. Users are supposed to be notified when apps want to access that data.

HTC said it is working on a fix. “Following a short testing period by our carrier partners, the patch will be sent over-the-air to customers, who will be notified to download and install it,” the company said.

In the meantime, users should be extra careful about the apps they download onto their phones and — as always — protect themselves by not downloading apps from suspicious publishers.

Related stories:

More technology coverage from The Post

HTC phones have security flaw

Should HTC buy webOS?

Hayley Tsukayama covers consumer technology for The Washington Post.
Show Comments
Most Read
DJIA -1.29%
NASDAQ -3.25%
Last Update: 02/06/2016(DJIA&NASDAQ)



Success! Check your inbox for details.

See all newsletters

Close video player
Now Playing

To keep reading, please enter your email address.

You’ll also receive from The Washington Post:
  • A free 6-week digital subscription
  • Our daily newsletter in your inbox

Please enter a valid email address

I have read and agree to the Terms of Service and Privacy Policy.

Please indicate agreement.

Thank you.

Check your inbox. We’ve sent an email explaining how to set up an account and activate your free digital subscription.