HTC devices may have a “massive” security flaw, according to a report from Android Police, a site that has exposed security problems with Android-based smartphones in the past.
According to the report, HTC’s customization of the Android system has made it fairly easy for outside users to access personal information such as phone numbers, user accounts, e-mail addresses and location data. Any app that requests a common permission from the device can access the information.
HTC released the following statement when asked about the flaw: “HTC takes our customers' security very seriously, and we are working to investigate this claim as quickly as possible. We will provide an update as soon as we're able to determine the accuracy of the claim and what steps, if any, need to be taken.”
Android Police said that it’s not possible to patch the hole without rooting the device or receiving an update from HTC. The site advised that users be particularly careful about downloading suspicious apps, and confirmed that several popular HTC phones — including the EVO 4G, EVO 3D and the Thunderbolt — running HTC’s stock Sense overlay are affected.