[geeks] Nothing is safe anymore (smartphone division)

Jonathan Groll lists at groll.co.za
Mon Mar 12 01:32:09 CDT 2012


On Sun, 11 Mar 2012 20:13:09 -0400, Phil Stracchino <alaric at metrocast.net> wrote:

> On 03/11/2012 07:47 PM, Sheldon T. Hall wrote:
> > So, it turns out that verious smartphone browsers have enough
> > vulnerabilities in them that a QR-code-based attack can end up giving the
> > attacker various databases from your phone, containing the usual passwords.
> [...]
> > I use very few password-protected services from my phone, and no important
> > ones, and I never _intentionally_ have any browser "remember" my passwords,
> > but I can't know what is being cached or otherwise saved behind my back.
> >
> > Sometimes I wonder if smartphonery is so smart, after all.
> 
> I do not consider my phone a secure device, which is why I have nothing
> more confidential on it than my contacts list.


The biggie is your gmail password, which you almost certainly have to
have if you're using an Android phone. (If you don't enter it your
phone won't sync contacts to gmail which is almost in the realm of
basic functionality for me now).

Cheers,
Jonathan
--
jjg: Jonathan J. Groll : groll co za
has_one { :blog => "http://bloggroll.com" }
Blackadder: Ha ! I laugh at danger and drop ice cubes down the vest of
fear.


More information about the geeks mailing list