Can someone from VZW comment on this?
http://money.cnn.com/2011/05/18/technology/android_security/index.htm
NEW YORK (CNNMoney) -- A significant security hole has been discovered in Google's Android operating system for smartphones, which can allow attackers to gain access to users' personal information without their permission.
The flaw, which was discovered by three research assistants at Ulm University in the southern part of Germany, affects approximately 97% of Android users.
In a recent blog post, the researchers found that users of Android devices running versions 2.3.3 and below could be susceptible to attack when they are connected to unencrypted Wi-Fi networks. Anyone else on that network could gain access to, modify or delete Android users' calendars, photos and contacts.
"It is quite easy," the researchers wrote in a blog post. "The implications of this vulnerability reach from disclosure to loss of personal information."
A spokesman for Googlesaid the company is aware of this issue, and a fix is already in place for the calendar and contacts applications in the latest versions of Android, codenamed "Gingerbread" and "Honeycomb." A solution is also in the works for Google's Picasa photo sharing service, he said.
Only about 3% of Android users have the latest versions of the operating system, but Google said Android users running older versions will get a fix "in the next few days." Users don't need to take any action, and the patch will roll out globally.
