The Motorola Droid running Android OS v2.1 has a minor security flaw which makes the phone data easily accessible by anyone. The Droid has a security lock which when active requires an unlock pattern in order to access the phone’s data. The bug easily bypasses this security lock when the user receives a call. (This should be a issue with Android v 2.0 and Droid being the only handset featuring it)
On receiving a call, pressing the “Back” icon makes accessible all the data on the phone, including user’s e-mails, phone book, messages, call details etc. The data remains accessible till the call is active. The good thing here is that the person trying to hack all these data using the bug needs to have the phone in his possession. Also, he needs to know the phone number of the user or has to wait till someone calls on the phone.
Google has confirmed that they are aware of the security flaw and are working on releasing its fix soon. Till the time, hold on to your Droid.
Btw: This is the same bug that was seen on the Apple iPhone somewhere in firmware version 2.x.
via [TechWhack]
