Skip to main content

Google Fixes Contact, Calendar Vulnerability In Android OS

Google has released an update fixing the security flaw recently reported in the Android mobile OS.

The flaw left users' contact and calender information exposed while accessing certain Google and non-Google services over an unsecured network.

"Today we're starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts," a spokesperson from Google wrote in an email, The Register reports.

"This fix requires no action from users and will roll out globally over the next few days," the spokesperson added.

Earlier in the week, Sophos, a leading security firm, claimed that the flaw left many Android phones exposed to unauthorized users who could easily peep into all the stored contacts, as well as access calender info.

Researchers from Germany's University of Ulm claimed that these vulnerabilities could also transmit sensitive data through unencrypted channels from devices synchronizing with Google’s online Picasa album.

“My recommendation would be to upgrade to the latest version of Android if at all possible.

Furthermore, do not use open WiFi networks,” Graham Cluley from Sophos advised Android users in a recent blog post.