Duo Security’s research aimed to examine the health of Android and Microsoft device security in the enterprise.
Across one million Android devices analysed, 59 percent are running out-of-date Chrome browsers, 30 percent are not passcode protected, and more than 20,000 had been tampered with.
Across three million devices analysed, the dominant browser platform is Chrome (36 percent) followed by Internet Explorer (29 percent), Firefox (12 percent), Safari Mobile (8 percent), Safari (7 percent), Chrome Mobile (3 percent).
Browsers running old and vulnerable versions of Flash are Internet Explorer (62 percent), Safari (32 percent), Firefox (32 percent), and Chrome (only 11 percent).
Security flaws in old versions of Flash can result in data leaks and remote code execution, allowing an attacker to take control of an affected system.
Steve Manzuik, director of security research at Duo Security said: “The Android ecosystem is quite fragmented when it comes to end user experience and security. In most cases, unless you have purchased a Nexus or Pixel device direct from Google, obtaining security patches for devices is not as easy as one would hope. This is a problem because not all carriers or even manufacturers respond quickly or even at all when a new security issue is identified.”
This article originally appeared at scmagazineuk.com