Heartbleed – Mobile Devices

200px-Heartbleed_svgIn a previous post, we talked about the Heartbleed bug and its danger to users of many popular websites. Besides these websites, it turns out we also need to be concerned about our mobile devices. “Of the smartphones in use, only Android devices are vulnerable to this form of attack” The Guardian reported. “Apple does not use the vulnerable version of OpenSSL on the iPhone or iPad, while Microsoft said that neither Windows Phone nor Windows is affected.”

So what can you do if you have an Android device?

First, check the list of 80 Android phones/tablets that might be vulnerable. Second, download the Heartbleed Detector, a free app developed by Lookout and scan your device. If you do have a vulnerable version of Android, users should look for an update to protect themselves. “If … there’s no fix available for you, I would be very cautious about using that device for sensitive data,” Lookout’s Marc Rogers told Ars Technica.