Rapid7, a security data and analytics firm found a serious bug in the WebView component of Android 4.3 and below (it's an older bit of software that lets apps view webpages without launching a separate app) that potentially opens up affected phones to malicious hackers. Android 4.4 and 5.0 are unaffected by the bug.

Read More -

http://arstechnica.com/security/2015/01/google-wont-fix-bug-hitting-60-perce...