You may have heard of Mr. Robot, an award-winning show about a clinically-depressed cybersecurity engineer hired by "Mr. Robot" to join a group of hacktivists. The latest episode, "eps2.6_succ3ss0r.p12," opens with a discussion between a Nexus owner (Mobley) and an iPhone owner (Trenton). Take a look at the clip:
For context, the terminal window open on Trenton's screen is creating a custom MP4 file with the Stagefright vulnerability. When Mobley is tricked into visiting the page to prove his superiority as an Android user, the infected video file loads on his phone (despite his claims that Chrome on Android has "better HTML5 compliance"). Read More
People are upset at phone manufacturers for taking their sweet time sending out software updates. That's understandable. It's why commenters laughed at Sony for releasing Android 5.1 to some of its phones several months after Marshmallow was available. It's why customers are pissed that Motorola isn't standing by some of its cheaper handsets. And apparently it's why a consumer advocacy group is suing Samsung in the Netherlands.
NOS.nl reports (via auto-translation, so please forgive any small errors) that the Dutch Consumentenbond is taking Samsung to civil court over a lack of consistent updates to its Android-powered phones. Read More
As he tends to do, HTC VP Mo Versi has Tweeted details of a pending update for the M9. This time it's the Verizon version of the device, and it's getting Android 5.1 tomorrow. But it's more than just Android 5.1. This OTA also adds some LTE bands for roaming and patches Stagefright too. Read More
Samsung isn't leaving its flagship of yesteryear completely high and dry in this age of Stagefright vulnerability. An update is being sent to the Verizon Galaxy S4 today that patches the Stagefright vulnerability, and adds a few more fixes for good measure. Read More
Last week, Google released factory images for every actively-supported Nexus except the Nexus 7 2013 LTE and Nexus Player. These images were for a new build, LMY48I, intended to patch the recently outed vulnerability that was found in Stagefright.
Today, it appears the OTAs are beginning to hit the masses, but be warned, all these do is patch Stagefright. They contain no other fixes of any kind, so if there's some problem with your device you're hoping to have solved with this update, it's not going to happen. That said, we've got links to some of the OTAs below, and will have others as they become available:
Google announced the Stagefright vulnerability fix would start rolling out as an OTA today, but it has also added new factory images to the Nexus developer pages. That means bootloader unlocked Nexus phones and tablets can flash the new build immediately, even if your device is running some wacky ROM. Read More
Google and the various major Android device vendors and carriers are scrambling to patch the recently-discovered Stagefright exploit, a weakness in Android's multimedia processing that can allow remote access via a simple MMS message. Google has already begun patching Nexus devices, and Samsung is working its way through its extensive product range starting with flagships. Yesterday Motorola released its plans to update its phones.
So which devices will get the fix? Basically everything Motorola has made since 2013, including carrier variants and DROID models for Verizon in the US. Here's the full list:
- Moto X Style (patched from launch)
- Moto X Play (patched from launch)
- Moto X (1st Gen, 2nd Gen)
- Moto X Pro
- Moto Maxx/Turbo
- Moto G (1st Gen, 2nd Gen, 3rd Gen)
- Moto G with 4G LTE (1st Gen, 2nd Gen)
- Moto E (1st Gen, 2nd Gen)
- Moto E with 4G LTE (2nd Gen)
- DROID Turbo
- DROID Ultra/Mini/Maxx
Some third-gen Moto G phones (released late last month) have been patched from launch, but others will need an over-the-air update. Read More
Verizon has begun rolling out an update for the Galaxy Note Edge that should address the vulnerability in Stagefright, one of Android's media libraries, that could potentially compromise a user's device. This is the first Stagefright-related fix we're aware of Verizon rolling out.
Of course, the changelog doesn't specifically mention Stagefright... but it's really obvious that's what it's for, given the timing of the update and terseness of the document. You can probably expect a slew of Samsung Stagefright fixes (as well as other OEMs, of course) on Verizon to follow, if this is any sign. Read More
Google is rolling out the Stagefright patch to Nexus devices as promised, but the bigger news alongside that announcement is a new update policy for Nexus devices. Going forward Google will release security patches for Nexus phones and tablets about once per month, which mirrors Samsung's recently announced Galaxy update program. Google is also making official the length of time you can expect to get Nexus updates. Read More
We knew that Stagefright fixes were due to start rolling out this week, and it's Sprint leading the pack. Sprint already rolled out an update to the Note 4 earlier this week, but now you can add several more Samsung devices to the list, plus the carrier has confirmed LMY48I for Nexus devices will have the Stagefright fixes included. Read More