Hacker News new | ask | show | jobs
by r1ch 3206 days ago
This looks very scary, especially given how many Android devices are out there that receive few or no security updates.
1 comments
padde 3206 days ago
Agreed. And just checked - my Samsung Galaxy S8 is vulnerable, no update available. Thanks Samsung!

This one will get nasty...

link
wohlergehen 3206 days ago
Well, I've been meaning to root mine and flash crDroid... This is certainly the final push.

They state 10% of all Android devices are vulnerable and won't get patches, and since the vulnearbility is arguably wormable I can't see how these devices will stay clean.

link
yumaikas 3206 days ago
Does keeping the BlueTooth radio turned off help here?
link
sevensor 3206 days ago
I have the same question -- I turned off the Bluetooth radio on my phone the day I got it, and I've never turned it back on. But does that mean the radio is actually powered down, or is the phone blocking Bluetooth at a higher level? Similarly, or possibly the same question, is an rfkill soft block adequate for a laptop with bluetooth?
link
kelnos 3206 days ago
On a laptop, if you want to be sure, you can at least do `sudo modprobe -r btusb` (or whatever your particular chipset's BT driver is called).
link
sevensor 3204 days ago
A very good point -- that's definitely better than rfkill.
link
carlmr 3206 days ago
At this point in time buying Samsung is just a bad decision. Have you checked out custom ROMs?
link
voltagex_ 3206 days ago
I got the August security update yesterday - how do I check if I'm vulnerable?
link
kreneskyp 3206 days ago
For android: https://play.google.com/store/apps/details?id=com.armis.blue...
link
voltagex_ 3206 days ago
Thanks. Yep, the S8+ updated yesterday is vulnerable.
link
AlfeG 3206 days ago
On other hand. My MiBox 3 suddenly received update.
link