HTC will Fix Holes in Mobile Devices

Tuesday, February 26, 2013 @ 03:02 PM gHale

HTC America will settle charges brought against it by the U.S. Federal Trade Commission (FTC) because the manufacturer failed to properly security devices it sold.

HTC will release software patches to fix all the security holes and to establish a comprehensive security program. As part of this program, the company will address all security-related issues during the development phase of its devices.

BYOD Growth Brings Security Fears
SAS: Keeping an Eye on Mobile Devices
DDoS Attacks Steady; Others on Rise
Users a Top Security Threat

In addition, it will undergo evaluation every other year by an independent security assessment body for the next 20 years, FTC officials said.

According to the FTC’s complaint, HTC failed to provide its engineering staff proper security training, failed to establish a process for receiving vulnerability reports from third parties, failed to follow secure coding practices, and failed to test its software for security holes.

Besides the dangerous vulnerabilities cybercriminals could leverage to install malware onto mobile devices, the FTC also found user manuals for Android phones contained “deceptive representations.”

Leave a Reply

You must be logged in to post a comment.