Leading the list released Monday is the Samsung Galaxy Mini, with the HTC Desire and Sony Ericsson Xperia X10 filling out the top three, respectively. The Apple iPhone 4 just missed making Bit9's "Dirty Dozen" list. The smartphone came in at 13, as an honorary mention, the vendor said.
A major reason for Android's security problem is manufacturers releasing product with outdated versions of the Google-created OS. The study found that Samsung, HTC, Motorola and LG were guilty of releasing products without updating the OS.
Making matters worse, the manufacturers are slow to upgrade once the devices are in the hands of consumers, and sometimes don't update the OS at all, preferring instead to focus on newer models, Bit9 said.
Fully, 56 percent of Android phones in the market today are running out-of-date and insecure versions of Android, the company reported. As a result, the phones pose a serious security threat, as consumers use the devices to store personal information and make purchases. "This is the new security frontier," Harry Sverdlove, chief technology officer for Waltham, Mass.-based Bit9, said in a statement.
Cybercriminals are well aware of the vulnerabilities in Android. Sunnyvale, Calif.-based Juniper Networks reported last week that the amount of Android-targeted malware had more than quadrupled since July.
The remaining top 12 Android phones rated the most insecure by Bit9, in order starting with number four Sanyo Zio, were HTC Wildfire, Samsung Epic 4G, LG Optimus S, Samsung Galaxy S, Motorola Droid X, LG Optimus One, Motorola Droid 2 and HTC Evo 4G.
In rating phones, Bit9 considered phones with the highest market share that were running out-of-date and insecure software and had the slowest update cycles.
related stories
trending stories
Video
sponsored resources

NetApp
NetApp Data Driven Learning Center

Vertiv
Edge Computing 360

Best of Breed Showcase

Annual Report Card Showcase

NexGen Showcase

Cloud PPG Showcase

100 People You Should Know Showcase

APC by Schneider Electric
IoT Platforms 360

Silver Peak
Silver Peak Learning Center

NPD
Industry Trends 360

Comcast
Comcast Business Learning Center

AT&T Cybersecurity
Cloud Security 360

ConnectWise
ConnectWise

Symantec
Symantec Business Security Learning Center

RSA
RSA

Eaton
Eaton Learning Center

BlackBerry Cylance
BlackBerry Cylance Learning Center

Storagecraft
Disaster Recovery Learning Center

Lenovo
Lenovo Learning Center

ID Agent
Managed Security 360

Wasabi
Wasabi

Sophos
Sophos Cybersecurity Learning Center

Scale Computing
Scale Computing Learning Center

SonicWall
Network Security 360

Cohesity
Cohesity Learning Center

Dell EMC
Software-defined Data Center 360

Sherweb
Cloud Partner Programs 360
Women of the Channel Showcase

Carbonite
Cloud Storage 360

HP Inc.
HP Toner and Ink
