Bad news for BlackBerry as they have issued a security advisory notice to those who have bought its flagship Z10 smartphone – The first BlackBerry 10 device to launch following the company’s bid to reignite their fortunes, back in February.
The advisory notice, which was issues in the last week, talks a bout a bug that relates [rather ironically] to BlackBerry Protect, the phones backup and security utility. The note does not pertain to the actual operating system of the phone itself.
According to the advisory notice, an escalation of privilege vulnerability exists in the software of some Z10 phones which could potentially allow a malicious application to ‘take advantage’ of weak permissions that are in the in-built security software. This vulnerability could allow a hacker to gain access to the devices password and then prevent the device from being wiped.
The ‘critical’ factor here is that the security flaw could dupe the the device’s user into installing an application which would then reset the devices password via BlackBerry Protect. This would mean that whilst the phone is in the hands of the user, the phones data would be under the hackers control.
BlackBerry 10 version 10.0.10.261 and earlier devices are affected by the critical bug, except version 10.0.9.2743. BlackBerry 7 and earlier users are not affected. Neither are those who have updated to BB 10.1.
BlackBerry said in the advisory that the bug is “not currently being actively exploited,” butÂ BlackBerry Z10Â owners andÂ IT administrators who deploy BlackBerry Z10 smartphones in an enterprise should update their devices as soon as possible.