I am surprised no one shared this article by Ron Amadeo yesterday

[G+_Marlon Thompson]

I am surprised no one shared this article by Ron Amadeo  yesterday http://arstechnica.com/gadgets/2015/08/waiting-for-androids-inevitable-security-armageddon/. Yes its the usual take no prisoners approach that even had Kirill Grouchnikov  write an article about the 1 pixel misalignment in the Google Play app that Ron pointed out http://www.pushing-pixels.org/2015/08/04/off-by-a-pixel.html (talk about #pixelpushing) . And while I don't agree with him that we need to burn it all down,  some changes need to be made and the carriers and OEMs know this, and we have to let them know we are watching. 

http://arstechnica.com/gadgets/2015/08/waiting-for-androids-inevitable-security-armageddon

[G+_Alan Char]

There's lots of good discussion in the comments to Ron Amadeo 's G+ post:

https://plus.google.com/+RonAmadeo/posts/RadCo5N9zbB

[G+_Luke Meiritz-Reid]

Old News .. ..

[G+_L I]

I feel like Amadeo glossed over the point about ALSR protecting 90% of users. That needs a bit more explanation. Is he writing this out of fear? Is this an article he would have written a month ago?

[G+_L I]

From The Verge, no less: http://www.theverge.com/2015/8/5/9099627/google-stagefright-android-vulnerability-protect-patch

 

"At the same time, Android mitigation efforts are making vulnerabilities harder and harder to exploit. Even in its current form, Stagefright has had trouble getting around Android's Address Space Layout Randomization protections (commonly known as ASLR). The bug can still be used to trigger unauthorized code — a troubling result under any circumstances — but ASLR system has made it difficult to reliably run any specific piece of code across a range of devices, a difficulty acknowledged by Drake himself."

[G+_Luke Meiritz-Reid]

Lionel D

Good Grief .. Charlie Brown