[edoceo]

But if you were slow updating you could avoid a malware once it was known.

[ksml]

Also if you were slow updating, you could avoid critical security patches (and many people did)

[simfoo]

Which affect the OS mostly and not individual apps. Funnily enough OS updates are usually not automatic. Which I think is a good thing because vendors keep mixing them with "feature updates" which end up making things worse (looking at you Samsung).

I'd love for Google to take away the security update channel from the phone vendors and auto-update ONLY security-related things through that.

[rjmunro]

So what happens if you are on an old version, a security issue is discovered, but they only fix it in the new version?

[malux85]

Yeah and missing security updates was WAY more common, autoupdates is the lesser of the two evils by far ...

[philshem]

Who will detect the malware if we are all slow to update?

[jobigoud]

The early adopters. There are always people that will weight that risk of latest & greatest and vs buggy differently, it should be a choice. Especially for apps that don't have a beta testing or early bird channel.