This is a pretty wild piece of news. Google, George Mason University, and the NSA are working to make Android the most secure OS out there. They're developing a "hardened" kernel so Android can pass all the necessary red tape to be deployed for government use. By 2012 they expect Android to be good enough for classified communication, and eventually they'll hit a higher security clearance level than BlackBerrys. Poor BlackBerry, security was one of the last things they had left.
HTC acknowledged the vulnerability in some of its devices that Android Police together with Trevor Eckhart posted Saturday night. The privilege escalation vulnerability currently allows a potentially malicious app that uses only the INTERNET permission to connect to HTC's HtcLoggers service and get access to data far exceeding its access rights. This data includes call history, the list of user accounts, including email addresses, SMS data, system logs, GPS data, and more.
I am quite speechless right now. Justin Case and I have spent all day together with Trevor Eckhart (you may remember him as TrevE of DamageControl and Virus ROMs) looking into Trev's findings deep inside HTC's latest software installed on such phones as EVO 3D, EVO 4G, Thunderbolt, and others.
These results are not pretty. In fact, they expose such ridiculously frivolous doings, which HTC has no one else to blame but itself, that the data-leaking Skype vulnerability Justin found earlier this year pales in comparison.
Trend Micro, the company that "Secures Your Journey To The Cloud" with an extensive line of security products for home and business, also offers a mobile security solution for Android users, called simply Mobile Security Personal Edition. This app is what we'll be discussing in the thirteenth installment of our Mobile Security App Shootout.
At A Glance
Within Trend Micro's security app we find another smoothly designed, well functioning security solution that sets up quickly and is exceedingly easy to use.
Coming in at number 11 in our shootout is McAfee Wave Secure. McAfee is one of the biggest names in digital security, and by buying the popular security app Wave Secure, they're bringing the McAfee name and protection many have come to trust to your Android device.
At A Glance
It took me a couple of tries to get Wave Secure installed on my Evo, but once I did I was quite pleased with the interface.
Looking to protect your mobile devices as well as it protects your computer, AVG has cooked up Anti-virus, available in free version, or a Pro offering for a one-time payment of $9.99. It's an app that not only helps you locate your lost device, but also protects your phone or tablet in real time by scanning apps, web pages, and settings to be sure you're safe.
At A Glance
AVG's anti-virus/security app comes in a small package but packs a lot of features.
Today, Motorola announced its newest handset geared towards corporate types: the Pro+. This is yet another offering to fill the Blackberry-style void in the Android world, as it not only offers the same familiar form factor, but advanced security features akin to that of RIM's handsets -- like remote wipe, full data encryption, and password expiration.
The Pro+ packs a 1GHz processor, 512 MB RAM, and Android 2.3 under its 3.1-inch 480x640 Gorilla Glass display and full QWERTY keyboard, along with a 5MP rear shooter and 1600mAh battery.
Lookout Mobile Security, developers of Lookout Security & Antivirus (more commonly known as Lookout) look to stand out in the lineup of Android Security apps, offering a great set of security features that not only find (and control) your phone once it is lost, but protect against apps and web pages that seek to harm your phone from the inside.
At a Glance:
At first blush Lookout already seems impressive. A quick look at its page in the Android market reveals that it is “the #1 Security & Antivirus App for Android,” and that it falls into the “10 million to 50 million downloads” category, meaning the developers must be doing something right.
Utilizing the same phone-centric implementation that we've just covered with PhoneLocator, Where's My Droid by alienmanfc6 is a light-weight, free security app that promises to help you recover your lost Android device.
At A Glance
As with most other security apps, Where's My Droid sets up with ease, asking only your name and zip code, and automatically using the email address of the Google account connected with your device. Likewise, WMD uses your Google account to push information to your phone once it receives an SMS containing a keyword for the desired command.
PhoneLocator is the latest entry in the Mobile Security App Shootout, coming to Android users from the developers at RVO. Another loss/theft-focused app, PhoneLocator has most of the normal features that we've seen before, but with a slight twist in functionality that may make or break the app for some users.
At A Glance
The app comes at a very low one-time payment of €1.99 (or about $2.84) and installs very quickly.