It's just a matter of time until someone, somewhere pushes an exploit that does a great deal of harm.
Yeah, that seems to be the meme of the day for now. That and the Android "fragmentation" one that Amedeo is riffing on. But I dunno.
Of late, what I see are a number of security firms--Zimperium, Trend Micro & Check Point most recenty--presenting themselves as the saviors of civilization (or at least Androidville) as we know it--via Black Hat 2015--and by extension increasing awareness of the availability of their "free" downloadable apps.
[Because of the politeness restrictions on these forums, I can't really say what I think these folks are doing at BH2015, but it involves guys waving things they think are impressive at one another.]
Even though these firms have apparently discovered these vulnerabilities in their own labs, I don't doubt that the vulnerabilities exist. But by publicizing their "findings," they seem to be doing more to provide road maps for potential hackers (who either didn't know or didn't much care about said vulnerabilities) than anything.
Similarly, I buy Amadeo's basic complaint about "the Android update machine" being "broken" because too many wheels need greased to make that machine efficient. Still, this chatter coated with figures of Armageddon reads like FUD t'me. I'm just not sure what it's really in aid of.