Dispatches From The Geeks

News and Announcements from the MCS Systems Group

Android Security Warning

Please see Matt’s note below on a security vulnerability that affects Android users. Here’s the short version – there’s an issue that allows applications to masquerade as trusted apps. Google has identified the issue and is pushing out a fix. The fix is not there yet, and when it gets there will be dependent on your phone’s manufacturer and carrier. For instance, Nexus phones will probably get the update quickest. As soon as you get notified of the security update, please apply it. This only affects Android users, not iPhone users.

You can download and run this tool to assess if you’ve been affected. If you have, feel free to come to us for help in dealing with it. Right now it’s expected you will show up as “Vulnerable” to the “FakeID” bug. The others should show Patched.

https://play.google.com/store/apps/details?id=com.bluebox.labs.onerootscanner&hl=en

Thanks.

On the heels of the new IT Access Agreement to include BYOD, a security company has discovered a flaw in the Android OS. There is a patch available that has begun to get distributed to the open source code base as well as to manufacturers. It is in the new IT access agreement to keep personal systems patched and up to date.

You can read about the vulnerability here:

http://bluebox.com/technical/android-fake-id-vulnerability/

You can read about the updated Argonne IT Access Agreement here:

https://blogs.inside.anl.gov/focalpoint/2014/07/28/importance-of-protecting-laboratory-data-on-personal-devices/

About these ads

Written by Craig Stacey

July 30, 2014 at 1:58 pm

Posted in Uncategorized

Follow

Get every new post delivered to your Inbox.

Join 41 other followers

%d bloggers like this: