Today, we’re working on smartphones more than ever, and it’s clear that device security is also increasingly important. With that in mind, Google’s Android Security & Privacy team just announced a new initiative aimed at helping improve the security of non-Pixel devices.
The new program is called Android Partner Vulnerability Initiative (APVI), roughly translated as Android Partner Vulnerability Initiative (APVI). Through this initiative, Google will ask the Android security and privacy team to investigate and point out OEM software vulnerabilities.
“APVI addresses issues discovered by Google that could potentially affect the security of Android devices or user data. This initiative complies with ISO / IEC 29147: 2018,” Google writes. Information technology – Security techniques – Recommended disclosure of security gaps “.
Currently, Google’s engineering team has discovered and reported a number of vulnerabilities to OEMs. But of course not all of them have been fixed.
In addition to programs like Android Security Rewards Program – ASR (Android Security Rewards Program) and Google Play Security Rewards Program (Google Play security rewards program), this program also contributes to Android Security Bulletins – ASB Provides monthly Android security patch (SPL) for all Android devices.
Around the same time as the new initiative launched, Google also revealed some of the vulnerabilities it discovered related to pre-installed third-party apps. Specifically, Google has discovered that a web browser pre-installed on many Android devices may have revealed users’ login information, including passwords. Google has now reported this issue to developers and will roll out an update to users soon.
If you want to check APVI’s performance, you can visit the website here . There, Google will reveal any security issues its security team discovers. And it is not surprising that you will find that names like OPPO, ZTE, Meizu, MediaTek, Huawei, etc. have appeared on this list.
Refer to MSpoweruser