Android vs. iOS Security Comparisons Get Complicated
Most mobile malware activity is focused on the Android OS, but Apple's iOS is not nearly as impregnable as many imagine.For the second time in two years, mobile-security firm Bluebox Security announced a serious vulnerability in the Android operating system that could allow a malicious application to gain higher privileges and take control of devices. It’s the latest serious flaw in the Android operating system, which is, by far, the operating system most targeted by attackers. Yet comparing the security of Google's and Apple's mobile operating systems is not straightforward, according to experts. The open nature of Android software tends to attract attackers, who have an easier time developing malicious programs for the platform than for Apple's relatively closed iOS. But both platforms have similar track records, in terms of vulnerabilities, and Google quickly updates its Play store and the Android core operating system to stop attacks, Jeff Forristal, chief technology officer of Bluebox, told eWEEK. "When people say that Android is insecure and Apple is doing a great job, think about the monumental task of what Google is trying to do here," he said. With thousands of different devices running the Android OS, "the fact that it has any modicum of security is amazing," he said.
In terms of vulnerabilities, the five-year track records of the two platforms are similar. Researchers have discovered 325 vulnerabilities in the Android operating system since 2010 and 185 in iOS, according to data from the National Vulnerability Database. Serious vulnerabilities have been found in both mobile operating systems. In 2012, for example, researchers hacked an Android device using the wireless Near-Field Communication (NFC) protocol, while hackers at a similar competition showed in 2013 a way to steal passwords from an iOS device.