Just in:
First-Ever Fortune Innovation Forum Draws Top Global Leaders to Hong Kong, Promoting Agendas On Collective Cross-Sector Advancement // Ajman Celebrates Conclusion of Ramadan Activities with Grand Ceremony // Renewables Surge Sets Record, But Global Equity Lags // Arvind Kejriwal Was Used By BJP In 2011 Movement To Take On The Congress // Konica Minolta is named ASEAN 2023 Market Leader in Colour Light and Mid Digital Production Printers // Infineon and HD Korea Shipbuilding & Offshore Engineering jointly develop ship electrification technology // Emirati Aid Reaches Ukraine as Food Shortages Bite // Sunshine’s Debut Features Leave Tech World Scratching Its Head // Emirates Post Speeds Up Deliveries for GCC with Special Day // 2024 Lok Sabha Elections Will Be The Costliest One Till Now In The Whole World // Meta Earth Official Website Launch: The Pioneer Explorer in the Modular Public Blockchain Domain // Ingdan Announces 2023 Annual Results // AIA Hong Kong Wins More Than 20 Accolades at MPF Ratings MPF Awards, BENCHMARK MPF of The Year Awards and Bloomberg Businessweek Top Fund Awards // Hope for Respite as UAE Endorses UN Plea for Gaza Truce // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // No running of govt from jail, says Delhi Lt Governor // Following the Money Trail: US and UK Investigate $20 Billion in USDT Transfers Tied to Sanctioned Russian Exchange // Sharpening the Focus: Sharjah Health Department Refines Evaluation Criteria for “Healthy Schools Programme” // Andertoons by Mark Anderson for Thu, 28 Mar 2024 // Global Audience to Witness Thrill of Dubai World Cup //
HomeWhat's OnFCC, FTC Question How Companies Roll Out Mobile Security Patches

FCC, FTC Question How Companies Roll Out Mobile Security Patches

Separate investigations by the Federal Communications Commission (FCC) and the Federal Trade Commission (FTC) have been launched into how smartphone makers and wireless service providers handle device security updates for their customers.

Following a resolution adopted by FTC commissioners Friday, the agency is ordering eight mobile device companies to submit information about how and when they decide to issue security patches for vulnerabilities. The companies that must submit responses to those orders within 45 days are Apple, BlackBerry, Google, HTC America, LG Electronics USA, Microsoft, Motorola Mobility and Samsung Electronics America.

Six wireless carriers also have 45 days to respond to FCC questions about their security update policies and procedures for mobile devices. Those companies are AT&T, Sprint, T-Mobile, Tracfone, U.S. Cellular and Verizon.

ADVERTISEMENT

‘Concerned’ About Patch Delays

The FCC said its investigation was prompted by the “growing number of vulnerabilities associated with mobile operating systems,” including the “Stagefright” bug that could threaten nearly 1 billion Android devices around the world. Identified last year by a researcher at Zimperium zLabs, Stagefright led several companies, including Google, LG and Samsung, to pledge to issue monthly security updates for their mobile devices.

“[W]e appreciate efforts made by operating system providers, original equipment manufacturers, and mobile service providers to respond quickly to address vulnerabilities as they arise,” Jon Wilkins, chief of the FCC’s Wireless Telecommunications Bureau, wrote yesterday in the agency’s letter to wireless carriers. “We are concerned, however, that there are significant delays in delivering patches to actual devices — and that older devices may never be patched.”

In a statement released after the announcements by the FCC and FTC, the CTIA wireless industry trade organization said carriers and partners work together to make customer security a top priority.

“As soon as OS providers and OEMs release security updates that are thoroughly tested, carriers deploy and encourage all customers to take advantage of the updates to protect their devices and personal information from cyberthreats,” John Marinho, CTIA vice president of technology and cybersecurity, said in the statement.

Android in Particular a Problem

In an e-mail, Christopher Budd, global threat communications manager for Trend Micro, told us that his organization believes there has been a problem for years with security patches and updates not getting to vulnerable mobile devices — Android devices in particular — promptly. Android devices account for nearly 62 percent of all mobile devices and tablets in operation, according to the latest statistics from NetMarketShare.

So far this year, Trend Micro researchers have identified 11 Android vulnerabilities, nine of which are considered by Google, which operates Android, to be high or critical security risks, Budd said. Nine of those Android vulnerabilities are also related to the Stagefright bug, he added.

“Unfortunately, while this is a known problem, we haven’t seen the carriers or handset makers take steps to address it,” Budd said. “Hopefully this action will bring more attention to this problem and help educate people that they need to tell their carriers and handset makers they want the same level of security support as Google Nexus users who get security updates directly from Google.”

Image Credit: All phone screenshots via Verizon.

Let’s block ads! (Why?)

ADVERTISEMENT

ADVERTISEMENT
Just in:
Andertoons by Mark Anderson for Thu, 28 Mar 2024 // TUMI Hosts Global Launch Event in Singapore to Unveil Women’s Asra Collection and Announce Global Ambassador, Mun Ka Young // German Job Market Resilience Bodes Well for Economic Recovery // Sunshine’s Debut Features Leave Tech World Scratching Its Head // 2024 Lok Sabha Elections Will Be The Costliest One Till Now In The Whole World // Experience Ultimate Shopping Freedom at 4.4 Shopee Spree: Don’t Worry, Shop Shopee! // Emirates Post Speeds Up Deliveries for GCC with Special Day // Hope for Respite as UAE Endorses UN Plea for Gaza Truce // Sharjah Chamber Breaks Ground on Final Expansion with New HQ Pact // Renewables Surge Sets Record, But Global Equity Lags // Infineon and HD Korea Shipbuilding & Offshore Engineering jointly develop ship electrification technology // Samsung Partners National Heritage Board to Bring a Slice of Singapore’s Cultural Heritage to Samsung The Frame TV // Meta Earth Official Website Launch: The Pioneer Explorer in the Modular Public Blockchain Domain // U.S. Compliance Takes Center Stage at OKX Following Industry Jitters // Ingdan Announces 2023 Annual Results // AI Boost for Galaxy Devices: Samsung Expands One UI 6.1 Update // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // Universal Language for Healthcare: General Authority Embraces Global Coding System // Superland Announced Annual Results for 2023, 2023 Net Profit Increased approximately 39.5% to approximately HK$22.2 million as Compared to the 2022 Adjusted One // Sharpening the Focus: Sharjah Health Department Refines Evaluation Criteria for “Healthy Schools Programme” //