Is there a fix for "Stagefright"?
Do we have it yet?
Is disabling "Messaging" a valid workaround?
Google already issued the fix to manufacturers, and they haven't implemented any fix. It's up to them to complete it. HTC already said they have it already implemented in their upcoming updates to their devices, but there is no telling when that will be. All other manufacturers haven't said a thing yet.
T-Mobile said "It's up to the 3rd party vendors to issue a fix" and "If you want more information as your device manufacturer"
This was just reported today. Its a software vulnerability not a vulnerability with the services that verizon provides. Google will issue a patch to the manufactures when they have the new code.
http://m.androidcentral.com/stagefright-exploit-what-you-need-know
Droid Turbo is a Verizon only phone. Also, Verizon has a Messenger+ app, that they could patch, right?
If VZW actually created the messenger + app, then they can check it themselves. If they didn't. Then they would have to contact the person and/or company that made that app.
This impacts most if not all Android phones. May want to follow the thread here Will Verizon release a patch for the recently announced vulnerability of Android phones to hacking via text?. The more customers following and posting to it may get the attention of the Verizon overlords sooner.
derrydavis wrote: The more customers following and posting to it may get the attention of the Verizon overlords sooner.
derrydavis wrote:
The more customers following and posting to it may get the attention of the Verizon overlords sooner.
You mean like the thread(s) which were hot topics for many months with thousands of replies asking when Android Lollipop would be pushed to their phone???
You had to bring that up! Maybe enough bad press? But I do think this is on a different level because it could end up costing customers people. Any idea if there is wording the contract about maintaining security on devices? Who is responsible? I have a feeling I know what it is but I think it should be on the vendor controlling the device.
Guys... It's NOT the apps. It's the OS... If it was the app then Google would NOT have to come out with a fix and push it out to manufacturers. It's up to the manufacturers to fix it. Regardless of popular belief carriers don't touch code.
If you want to protect yourself for now turn off auto retrieve.
Here's some more info. Some of it is piggybacking the 1st link i posted. Some of it isn't.
Stagefright: It Only Takes One Text To Hack 950 Million Android Phones - Forbes
VZW chat reps say there's a feature called Verizon Protect and Security that is a substitute until the fix is issued....but I have no details from that rep on what that does, and why a Google fix would be necessary if VZW has one....stonewalling and silence is all you ever get from VZW on such topics as software updates
StageFright has actually been around a couple years. The only thing you can do is go into the settings of your Message program and uncheck "Auto-Retrieve". This will make it to where every text you receive will show a "Download Now" for all text message attachments. Do not press "Download now" for people you do not know and trust. The is the only work around there is until Google fixes android. This is a base Android vulnerability. Google's responsibility. So no manufacturer like Motorola, Samsung, etc. can fix it.
