Skip to main content
  1. Home
  2. Mobile
  3. News

FTC and FCC shine a light on mobile security updates

By

switching from an iPhone to an Android device
Google began issuing monthly security updates for Android ever since the Stagefright bug was exposed, and companies like Samsung, LG, and Sony committed to the program to also issue updates to their Android devices.

But how exactly are these updates moving along? What is the process of deciding which phones get updates? Do manufacturers communicate to software developers when there are threatening vulnerabilities? These are questions the Federal Trade Commission and the Federal Communications Commission want to find out.

Recommended Videos

The FTC has issued orders to eight companies, seeking more information about “how they issue security updates to address vulnerabilities in smartphones, tablets, and other mobile devices.” And the list of companies aren’t restricted to Android device manufacturers.

Related

The orders were sent to Apple, Google, Microsoft, BlackBerry, Samsung, LG, Motorola, and HTC. The requests for information cover topics such as when a company decides to disclose a vulnerability to consumers, whether companies offer unlocked variants of devices, what security testing processes each company follows, and more.

“There have recently been a growing number of vulnerabilities associated with mobile operating systems that threaten the security and integrity of a user’s device, including ‘Stagefright’ in the Android operating system, which may affect almost 1 billion Android devices globally,” the FCC said in a blog post.

For operating systems like Android, however, a large reason as to why updates don’t reach consumers is because of carriers. Many carriers delay pushing updates for a considerable length of time, and usually wait for big operating system updates. The FCC has reportedly sent out orders to carriers as well in a separate but parallel inquiry.

The FTC and the FCC want to spotlight the significant delays from device manufacturers and carriers in addressing vulnerabilities, to protect consumers from security threats. The move is undoubtedly positive for consumers — if federal action is taken to improve the time in which manufacturers and carriers push updates, that means more people will be running secure operating systems with fewer vulnerabilities.

If that type of action takes place, it would also be a considerable boon for Google, as it could potentially fix Android’s fragmentation problem.

Editors' Recommendations

Topics
Julian Chokkattu
Julian Chokkattu
Former Digital Trends Contributor
Julian is the mobile and wearables editor at Digital Trends, covering smartphones, fitness trackers, smartwatches, and more…
Are smartphone software update promises worth the paper they’re printed on?
iPhone 13 Pro in hand.

Buying a smartphone and keeping it for years is easier than ever before. If you buy a premium smartphone like the iPhone 13 or the Pixel 6, lengthy update policies and powerfully designed hardware will keep your phone running smoothly for years. Even less-expensive phones -- think Samsung's A-series models and Nokia's X-series phones -- also have their manufacturers promising updates for over two years. While those are good policies, there are questions on how much you can rely on those assurances.
The compelling promise of better software support
In a move pioneered initially by Apple, phones come with the expectation that they will get better and better over time with annual updates and patches. iOS 15 and Android 12 have come with a mass of new features for iPhones and Android phones, and we can expect iOS 16 and Android 13 to do so next year, and iOS 17 and Android 14 the next, and so on. In a perfect world, this means that we'd be able to hold on to our smartphones for as long as they can physically hang together, but this world isn't a perfect one.

A false promise?
Apple, Google, and Samsung devices may have a timetable and stick to it, but everyone else is a crapshoot. A company may promise a certain number of years of its updates, and it may even want to deliver at the time, but there's a lot that could happen in between. For starters, companies don't generally control all parts of their phone in terms of hardware. Any update policies have to be made in concert with the operating system maker, the chipmaker, carriers, and so on. If one of these links in the chain falls apart, the chances of the update promise falling through increases.

Read more
WhatsApp launches crypto-powered mobile payments in the U.S.
WhatsApp Messenger on an iPhone.

WhatsApp has launched a digital payments pilot in the U.S., allowing a limited number of people to send and receive money with the same ease they would a regular message. This payment feature is powered by the Meta-owned Novi digital wallet service, which uses Pax Dollars (USDP) to facilitate transfers, and they all go through instantly.

Meta launched Novi back in 2020, saying, "With Novi, sending money will be as easy as sending a message. You’ll be able to use Novi as a stand-alone app, as well as in Messenger and WhatsApp. There will be no hidden charges to add, send, receive or withdraw money, and your transfers will arrive instantly. All Novi customers will be verified using government-issued ID, and fraud protections will be built in throughout the app."

Read more
Spotify finally adds real-time lyrics support to its mobile apps
Spotify app icon on iPhone.

Spotify is finally joining up with Apple and Google in offering lyrics support in its music streaming app. After just over a year of testing in a handful of international markets, the company today announced the global rollout of lyrics support to all of its apps for both free and premium subscribers.

"Lyrics are one of the most requested features from listeners across the globe. So after iterating and testing, we’ve created an experience that’s simple and interactive -- and even shareable. By partnering with Musixmatch, we’re bringing song lyrics to life through in-app access across the majority of our extensive library of tracks," Spotify announced on Thursday.

Read more