The Inquirer: Android developer Trevor Eckhart has identified a bug in HTC smartphones that could allow nearly any app to access sensitive personal information stored on the devices. The problem lies with a a recently introduced logging application that records email addresses, GPS history, phone numbers, SMS data and other information.
Eckhart says he notified the company of the issue on September 24, but when it did not respond within five days, he made the vulnerability public. HTC responded with a statement saying, “HTC takes our customers’ security very seriously, and we are working to investigate this claim as quickly as possible.” It added, “We will provide an update as soon as we’re able to determine the accuracy of the claim and what steps, if any, need to be taken.”