Skip to main content

Is the Heartbleed bug in your Android? 80 phones/tablets that could be vulnerable

list of android phones vulnerable to heartbleed bug galaxy s3 and lg intuition
Image used with permission by copyright holder

The Web has largely fixed itself from the major Heartbleed OpenSSL bug discovered on April 7, 2014. From the reports we’ve seen, few major websites are still vulnerable to the bug, and many of the apps and services we use have been patched as well. Unfortunately, there’s one festering Heartbleed wound that isn’t fixed, and won’t get patched anytime soon. As Google admitted on its own blog, phones and tablets running Android 4.1.1 are vulnerable to Heartbleed bug hack attacks.

We’ve tried but can’t find a good listing of what phones and tablets might be vulnerable, so we decided to make one ourselves. Below you’ll find a near-complete list of devices we think could potentially have the Heartbleed bug. This is based on information from Wikipedia, wireless carrier websites, and all over. We’ll continue to update and fix this list as readers, manufacturers, and carriers respond to our requests for info. We’ve included any devices we believe could possibly have Android 4.1.1 on them. Recent estimates pin the number of vulnerable devices at about 50 million.

Recommended Videos

IF YOUR DEVICE IS LISTED AS VULNERABLE:

  • Go to Settings > About phone to see if you’re running version 4.1.1.
  • Run the Lookout Mobile Security app
  • If you’re vulnerable, check for updates
  • If there are no updates, take the phone offline and remove all sensitive information from it
  • Avoid browsing the Web, using email, or doing anything serious on the device until a fix is issued. “If you have a vulnerable device and there’s no fix available for you, I would be very cautious about using that device for sensitive data,” Lookout’s Marc Rogers told Ars Technica. “So I would be cautious about using it for banking or sending personal messages.”

Most likely, an attacker might try to lure you into an infected website via email or some other method, trying to use the Hearbleed vulnerability to extract information from Web browser tabs. We recommend you use the Google Chrome browser, if it’s available on your device, and update it. Be sure to download the Lookout Mobile Security app to see if your device is vulnerable.

Android phones that could be vulnerable to Heartbleed (all carriers)

These are phones that span across carriers and countries. It’s not a complete list. We’ve mostly tackled only the big manufacturers. Let us know of omissions by commenting.

 

Launched With

Update Available?

Advice

Asus PadFone Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Asus PadFone 2 Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One S Android 4.0 Yes, to 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One X  Android 4.0 Yes, to 4.1  DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One XL Android 4.0 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
HTC Evo 4G LTE Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
HTC Desire X Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
HTC One X+ Android 4.1 Possibly  DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Optimus L5 Android 4.0 Possibly  NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus L7 Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus L7 Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus Vu (LG Intuition) Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus 4X HD Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
LG Optimus G Android 4.0 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
Motorola Atrix HD Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid 4 Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid Razr Android 2.3 Yes, to 4.0 (or higher)  NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid Razr Maxx Android 2.3 Yes, to 4.0 (or higher)  NOT VULNERABLE (PROBABLY), CHECK VERSION
Motorola Droid Razr I Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION 
Motorola Droid Razr HD Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
Panasonic Eluga Android 4.0 Unlikely NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Nexus S (Google) Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Mini 2 Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Ace Plus Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Ace 2 Android 2.3 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy W (i8150) Android 2.3 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Chat Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Nexus Android 4.0 Yes, to 4.3 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy S Duo Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy S Advance (i9070) Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S2 Android 2.3 Yes, to 4.1 or 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S3 (Non-LTE) Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy S3 (LTE) Android 4.1.1 Yes, to 4.1.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note Android 2.3 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Note 2 Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S3 Mini Android 4.1.2 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Tipo Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Miro Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia E Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia Go Android 2.3 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Sola Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia U Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia P Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia Ion LTE Android 2.3 Yes, to 4.0 (or higher) NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Acro S Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia S Android 2.3 Yes, to 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia SL Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia J Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia V Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia T Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Sony Xperia Z Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia ZL Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia ZR Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia Z Ultra Android 4.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Sony Xperia SP Android 4.1 Yes, to 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

Android tablets that could be vulnerable to Heartbleed

These are tablets span across carriers and countries. It’s not a complete list. We’ve mostly tackled only the big manufacturers. Let us know of omissions by commenting.

  Launched With Update available? Advice
Acer Iconia A700 Android 4.0 Yes, to 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Acer Iconia A110 Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Asus Transformer Prime (TF201) Android 4.0 Yes, to 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Asus Transformer Pad 300 Android 4.0 Yes, to 4.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Asus Transformer Pad Infinity Android 4.0 Yes, to 4.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Asus FonePad Android 4.1 Possibly DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Cube U30GT 2 Android 4.1.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HP Slate 7 Android 4.1.1 Yes, to 4.2.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Lenovo A2109 Android 4.0.4 Yes, to 4.1.1 DO NOT UPDATE, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Tab 2 7.0 Android 4.0 Yes, to 4.2.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Tab 2 10.1 Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Samsung Galaxy Note 10.1 Android 4.0 Yes, to 4.1.2 NOT VULNERABLE (PROBABLY), CHECK VERSION
Toshiba Excite 10″ Android 4.0 Yes, 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

AT&T phones on sale now that could be vulnerable to Heartbleed

 

Launched With

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1.1  Yes, 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

T-Mobile phones on sale now that could be vulnerable to Heartbleed

 

Launched With

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC One S Android 4.0 Yes, Version 4.1.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1.1  Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

Verizon phones on sale now that could be vulnerable to Heartbleed

Verizon

Launched with

Update Available?

STATUS

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Kyocera Hydro Elite Android 4.1 Not that we know of DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Enact Android 4.1.2  Not that we know of NOT VULNERABLE (PROBABLY), CHECK VERSION
Casio G’zOne Commando Android 4.1.2  Not that we know of NOT VULNERABLE (PROBABLY), CHECK VERSION
Droid Razr M Android 4.1 Not that we know of DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Spectrum (Used) Android 2.3  No  NOT VULNERABLE, BUT YOU NEED A NEW PHONE
LG Revolution (Used)  Android 2.2  No  NOT VULNERABLE, BUT YOU NEED A NEW PHONE

Sprint phones on sale now that could be vulnerable to Heartbleed

 

Launched with

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy Note 2 Android 4.1 4.4.2 in late April DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Galaxy S3 Android 4.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB 
Motorola Photon Q Android 4.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
LG Viper (new and used) Android 4.0 Possibly NOT VULNERABLE (PROBABLY), CHECK VERSION 
Kyocera Hydro Edge Android 4.1  Not that we know of DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
HTC EVO Android 4.1 Yes, Version 4.3 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Kyocera Torque Android 4.1  Yes, Version 4.1.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Samsung Replenish (Used) Android 2.2 No NOT VULNERABLE, BUT YOU NEED A NEW PHONE
Samsung Epic 4G (Used) Android 2.3 No NOT VULNERABLE, BUT YOU NEED A NEW PHONE 
Nexus S 4G Android 4.0 Yes, Version 4.1 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB

U.S. Cellular phones on sale now that could be vulnerable to Heartbleed

 

Launched with

Update Available?

Advice

Samsung Galaxy S3 Mini Android 4.1.1 Yes, Version 4.2 DANGER! IF RUNNING 4.1.1, REMOVE SENSITIVE DATA, AVOID WEB
Huawei Ascend Y300 Android 4.1.1 No  DANGER! REMOVE SENSITIVE DATA, AVOID WEB

Before you begin, please read our How to Protect Your Device from Heartbleed Guide. It will explain more about the Heartbleed bug. We also have a robust list of Websites Affected by HeartbleedApps Affected by Heartbleedand Video Game Services Affected by Heartbleed.

If you have suggestions, please help us update this list. If you know someone who owns one of these affected phones, help them out and inform them.

Jeffrey Van Camp
Former Digital Trends Contributor
As DT's Deputy Editor, Jeff helps oversee editorial operations at Digital Trends. Previously, he ran the site's…
The OnePlus Nord 4 does one thing better than any other Android phone
OnePlus Nord 4 Midnight black with metal back held in hand.

Other than a few deviations, OnePlus has a penchant for value products. The premium OnePlus 12 offers a (mostly) superior set of features and a refined experience over similarly-priced flagships such as the Galaxy S24 Plus or the Pixel 8 Pro. Similarly, the $500 OnePlus 12R offers exceptional performance and a flagship-like experience for its price. The OnePlus Nord 4, which sits in a price bracket right under the 12R, has its own benefits, but one that stands out is its metal back.

The OnePlus Nord 4 is the first and currently the only 5G phone to feature a metal back panel. Not only is it a striking design but it also has another trait that perceivably makes it more exciting than other phones: Its metal body potentially helps improve performance.

Read more
Google Gemini is about to get a lot more useful on your Android phone
Google Gemini app on the Motorola Razr Plus 2024.

Google isn’t planning on hitting the breaks on Gemini anytime soon. After first teasing a number of new extensions during Google I/O 2024, a recent APK teardown from Android Authority has revealed a ton of unannounced, useful new features from Gemini that are soon coming to your Android phone. Gemini is expected to get a variety of new extensions that will allow integration into Google services like Keep, Tasks, and Calendar.

Each of the extensions seems to provide useful features, and Android Authority has demo videos showcasing each. With Google Keep, you can now ask Gemini to create new notes and lists, add information to notes, and add or remove items from lists. Google Tasks now lets you use Gemini to create new tasks, including reminders. It’ll also allow you to view existing tasks and show their due dates.

Read more
How to fake the GPS location on your iPhone or Android phone
Google Maps on the Asus Zenfone 11 Ultra.

Modern smartphones have long been equipped with location-aware features that combine global positioning system (GPS) hardware with other features like Wi-Fi and cellular triangulation to help get an accurate fix on your location nearly anywhere in the world. These typically work very well, but what about those times you want your iPhone or Android smartphone to think it's somewhere else?

Perhaps you're trying out an app that searches for nearby stores or restaurants in another city, wanting to access services that are only available within a specific country or region, or playing a location-based game. Whatever the reason, sometimes it's useful to be somewhere else as far as your smartphone is concerned. The good news is that with the right tools, it's not difficult to spoof your GPS location.

Read more