It’s a bad thought process to ask for proof that security matters. You do not require proof of that as we know that it does. Many identities are stolen every day.
I think that all this hysteria around security updates may be part of a marketing ploy to increase sales of new phones. Why? Because 3 years ago, no one cared how many updates a particular phone model would receive. I also found information that more than 80% of Android smartphones in 2015 had known unpatched vulnerabilities. However, I don’t know of a single case where my friends’ phones were hacked without their involvement. But I know 1000 cases when my friends clicked on a fake link and entered their passwords/card details. Anyway, I agree that security patches are a necessity, but not a reason to immediately buy a new phone when my old one stops receiving updates.
A lot of hacks are done through browsers. Phones have browsers. When the Chinese make off with Federal Reserve documents because Joe IT logged in with a phone it doesn’t make it into the news.
It’s just the case that patched security flaws are standard practice for a reason. Hey - use http only, make all your passwords Password1, knock yourself out, but don’t expect others to be like “Yeah! Why are we doing all this . . security ???”
Running insecure software is a bad idea.
I asked about real cases. And if it’s a bad idea, why do banks allow their apps to run on “unprotected” phones?
It’s a bad thought process to ask for proof that security matters. You do not require proof of that as we know that it does. Many identities are stolen every day.
I think that all this hysteria around security updates may be part of a marketing ploy to increase sales of new phones. Why? Because 3 years ago, no one cared how many updates a particular phone model would receive. I also found information that more than 80% of Android smartphones in 2015 had known unpatched vulnerabilities. However, I don’t know of a single case where my friends’ phones were hacked without their involvement. But I know 1000 cases when my friends clicked on a fake link and entered their passwords/card details. Anyway, I agree that security patches are a necessity, but not a reason to immediately buy a new phone when my old one stops receiving updates.
A lot of hacks are done through browsers. Phones have browsers. When the Chinese make off with Federal Reserve documents because Joe IT logged in with a phone it doesn’t make it into the news.
It’s just the case that patched security flaws are standard practice for a reason. Hey - use http only, make all your passwords Password1, knock yourself out, but don’t expect others to be like “Yeah! Why are we doing all this . . security ???”
My requirements for and definition of “security” differ substantially from my bank’s.