1 Billion Android Devices At Risk Because Google Stops Providing Them Updates

Sick Android

Google tends to support Android devices for at least three years. What this means in 2020, Android phones with Android 7 Nougat and below won't anymore be supported.

Consumer watchdog Which? said that two in five Android devices are no longer receiving vital security updates from Google, putting them at greater risk of malware or other security flaws.

Android 10 which is the most recent version at this date, is still actively patched as quickly as Google could. Its predecessors, like Android 9 Pie and 8 Oreo are still in getting security updates.

But anything below that, is at risk.

Based on Google's own data from 2019, around 40% of Android active users worldwide are on version 6.0 or earlier: Marshmallow (2015), Lollipop (2014), KitKat (2013), Jellybean (2012), Ice Cream Sandwich (2011) and Gingerbread (2010), according to the Android Security Bulletin.

In 2019, Google stopped providing updates to Android 7 Nougat and below.

"That means more than one billion phones and tablets were active around the world that no longer received security updates," said Which? on its press release.

To come into its conclusion, Which? bought a number of three-year-old Android devices (Motorola X, Samsung Galaxy A5, Sony Xperia Z2, LG/Google Nexus 5 and Samsung Galaxy S6), most of which run Android 7 Nougat, and asked antivirus lab AV Comparative to infect them.

Here, they were able to infect all of them with malware, including multiple infections from different malware on some of the devices, as well as The Joker.

According to Kate Bevan, Which? Computing editor:

"It's very concerning that expensive Android devices have such a short shelf life before they lose security support, leaving millions of users at risk of serious consequences if they fall victim to hackers."

"Google and phone manufacturers need to be upfront about security updates - with clear information about how long they will last and what customers should do when they run out."

"The government must also push ahead with planned legislation to ensure manufacturers are far more transparent about security updates for smart devices - and their impact on consumers."

Old Android phones

Google said that:

"We're dedicated to improving security for Android devices every day. We provide security updates with bug fixes and other protections every month, and continually work with hardware and carrier partners to ensure that Android users have a fast, safe experience with their devices."

But that statement unfortunately, doesn't apply to phones that are years old.

The Android ecosystem is known to be fragmented. When updates are launched by Google, they have to go through the device manufacturers and mobile operators, before going to the customers.

As a result, if the updates do get pushed, they will take a long time to arrive.

For people who still own Android devices that cannot be updated to a newer version, they should be careful when downloading apps outside Google Play Store.

They should be take precautions when dealing with email, SMS or MMS messages, and try to never click on suspicious links wherever they are found.

Read: Too Many Android Phones On The Market? Here Are The Reasons

Published: 
07/03/2020