Dan Goodin writing for Ars Technica:
Google has already issued updates to prevent attackers from using the exploits to tamper with legitimate apps found in the official Play Marketplace. The company has also released updates to handset manufacturers and carriers. But given the track record of millions of Android phones that never, or only rarely, receive updates to patch dangerous security vulnerabilities, it’s a fair bet that many handsets will remain vulnerable.
While I am sometimes frustrated by the limitations imposed on my iOS devices by Apple, they make a lot of sense when compared to the alternative.