View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Software
April 14, 2014

Heartbleed bug making Android devices ‘vulnerable to attack’

Devices powered by Android version 4.1.1 could be at risk from the wide-ranging bug.

By CBR Staff Writer

Extending its wings beyond the Internet, the ‘Heartbleed’ bug, discovered last week, has reportedly hit consumer devices, infecting millions of smartphones and tablets powered by Google’s Android operating system.

Despite the company stating in a blog post last week that all versions of Android were immune to the bug, Google admitted that there is a ‘limited exception’ to an older edition of the OS, version 4.1.1, which was rolled out in 2012.

Security researchers claim that the Android 4.1.1 version powers millions of smartphones and tablets, including devices manufactured by Samsung, HTC and other companies.

Recent Google statistics found that 34% of Android devices are running some form of the 4.1 OS, but says that less than 10% of active devices are vulnerable to the bug.

Discovered by researchers from Google and Finnish firm Codenomicon, the Heartbleed bug affects open-source encryption OpenSSL by enabling hackers to steal computer data normally protected by SSL/TLS encryption.

However, a patch was launched o 07 April and effected users were advised to upgrade to OpenSSL 1.0.1g.

Content from our partners
Scan and deliver
GenAI cybersecurity: "A super-human analyst, with a brain the size of a planet."
Cloud, AI, and cyber security – highlights from DTX Manchester

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.