Re: Yeah But...
do they not think it beyond the wit/skill of the malware creators to see what version of Android the device is running and use known vulnerabilities for that version to install the payloads?(spelling fixed)
The point he's trying to make is that it is exactly this kind of discovery and targeted exploit that is too expensive to be worthwhile.
This is a "things aren't as bad as some people make out" argument which does seem to be borne out by the facts: millions, or even billions of mobile phones have yet to be compromised. I also wonder what the potential market even for those compromised devices is, assuming that miscreants go for the current favourite attack of ransomware. Even for the technically unskilled a factory reset and reinstall from the cloud shouldn't be too hard, or too expensive if you have to get someone to do it: must be less than cost of a replacement handset.
No reason for Google or the handset makers to rest on their laurels, of course.
Biting the hand that feeds IT
