Certifi-gate: Another Huge Android Vulnerability

An anonymous reader writes: Security research firm Check Point has released information about a new vulnerability called Certifi-gate, which they say compromises the security of hundreds of millions of Android devices. The flaw exists within the mobile Remote Support Tools, which are intended to enable screen sharing and simulated taps for tech support purposes. Unfortunately, the way mRSTs validate the remote operator is easy to exploit. Because the software is designed to allow both monitoring of a device's screen and simulated input, the potential for misuse is quite serious. The flaw was disclosed to manufacturers a month ago. HTC, for one, has confirmed it is already starting to roll out a fix.

Re:I wish

[Gaygirlie]

Have you checked if there are any custom ROMs for it on XDA-forums? I got fed up with these vulnerabilities myself yesterday, what with LG taking a minimum of 6 months to even consider doing anything, and wiped my LG G2 and installed Cyanogenmod on it; no bloat, much slicker, and both this and the Stagefright - bugs have been fixed. I have Cyanogenmod 12 on my aging Galaxy Note, too, that I just have hanging around as a replacement phone should something happen to my G2: Samsung never updated the Note beyond Kitkat and Samsung's own firmware was rife with bugs and god damn that Touchwiz slowed things down, but, again, replacing the official ROM made the device feel like new.