It has been learnt that Microsoft is all set to push out a security update for Windows Phone 7 on May 3. Basically, this security update for Windows Phone 7 is to block certain fake SSL certificates that were issed by Comodo which claims that the incident was a politically motivated attack. Whereas Comodo revoked the certificates soon after this issue became public and Microsoft pushed out security updates for all conventional Windows versions, this is going to be the first update of this sort to handle the issue on Windows Phone 7.
As it turns out, the bogus SSL certificates indeed do present a potential security risk. They could have been used to perform mass phishing attacks or spoof content on the internet. This issue does not entail that a security vulnerability was present in Windows Phone 7, rather the company is rolling out mitigation update so as to secure Windows Phone 7 users from above mentioned activities on the internet.
The interesting part here is that it is not known as of now which method Microsoft is going to use for delivering this security upgrade for Windows Phone 7. It is being said that keeping the small size of this update in mind, carriers are likely to approve an early distribution plan over their existing mobile networks. On the other hand, there’s buzz that Microsoft may use over the air or OTA system for delivering the security update for Windows Phone 7.
We’ll be sure to let you know once that is confirmed. Stay tuned!
More Posts in Microsoft