FCC and FTC launch joint investigation on how companies release mobile security patches


Posts: 3,073   +97

Amid a number of critical security flaws hitting mobile devices in recent months, the FCC and the FTC have launched investigations into how companies release their mobile security patches. According to a joint announcement, as many as fourteen companies are being inquired by the government agencies, with the FCC reaching out to six wireless carriers and the FTC to eight mobile device manufacturers.

The announcement does not go into too many specifics but the gist of it is they want more information on how manufacturers and carriers currently release security updates to their devices and how security patches are distributed. The agencies claim they want to “better understand, and ultimately to improve, the security of mobile devices.”

The FCC cites the so-called Stagefright vulnerability that affected around a billion Android devices worldwide as an example of recent vulnerabilities. This bug was first discovered in July last year and has since been patched on several devices, but the bug continues to be exploited and many devices have yet to receive an update.

This lack of a coordinated and comprehensive effort to guarantee security on older devices is what the FCC and FTC fund most troubling: “To date, operating system providers, original equipment manufacturers, and mobile service providers have responded to address vulnerabilities as they arise. There are, however, significant delays in delivering patches to actual devices—and that older devices may never be patched.”

Permalink to story.


Raoul Duke

Maybe instead of releasing so many versions, they might want to work on the current or upcoming one. With less releases, they wouldn't have to abandon updating the older ones so quickly.
But I guess a new model, a new version means something to hype and they hope it will translate into more sales
  • Like
Reactions: cliffordcooley

Uncle Al

Posts: 7,964   +6,728
I would like to see an extensive investigation of the link between those creating these bugs and viruses and the companies selling so many different anti-virus programs, all of which have some form of flaw that prevents them from building a sound defense.
  • Like
Reactions: cliffordcooley