Analysts say the partial U.S.-China trade deal doesn't touch on thorny issues plaguing both sides, and warn talks could break down again.World Economyread more
Economists polled by Reuters had expected Chinese exports denominated in the U.S. dollar to fall by 3% and imports to decline by 5.2% in September, compared to a year ago.China Economyread more
The U.S. had plans to hike duties on at least $250 billion in Chinese goods to 30% from 25% on Tuesday. Despite the partial trade deal, some banks on Sunday wrote that tariff...Marketsread more
The industry has pulled in $322 billion over the past six months, the fastest pace since the second half of 2008.Marketsread more
A technical recession occurs when there are two consecutive quarters of economic contraction.Asia Economyread more
"Deepfakes" are being used to depict people in fake videos they did not actually appear in, and can potentially affect elections, diplomacy and how markets move, experts say.Technologyread more
Chinese President Xi Jinping warned on Sunday that any attempt to divide China will be crushed.China Politicsread more
Syria's Kurds said Syrian government forces agreed Sunday to help them fend off Turkey's invasion.World Newsread more
U.S. President Donald Trump said that both sides reached a "very substantial phase one deal" that will address intellectual property and financial services concerns and...Asia Marketsread more
Hagibis dropped record amounts of rain for a period in some spots, according to meteorological officials, causing more than 20 rivers to overflow.Asia Newsread more
A spokesperson for the U.S.-backed Syrian Democratic Forces (SDF) has issued a stark warning to the international community.World Newsread more
Another big security flaw in Android highlights just how messed up the Google ecosystem still is when it comes to security.
This one, known as Quadrooter, was disclosed in recent days by security software maker Check Point. Quadrooter affects a whole host of top-end Android devices running one of Qualcomm's Snapdragon chips.
That means hundreds of millions or even a billion devices could be at risk, including top-end models such as the Samsung Galaxy S7, HTC 10 and LG G5 and even Google's latest Nexus devices and security-focused devices like BlackBerry's Priv and Silent Circle's Blackphone.
More from Recode:
Google keeps buying cloud companies to take on Amazon's AWS
Online Olympic video streaming is big, but not as big as eSports
Walmart was the only bidder in $3 billion Jet.com acquisition
The problem is there are still so many hands in the pot when it comes to updating Android. Google updates its software, but device makers have to tailor it for their phones — and sometimes they get their software not from Google, but from chipmakers like Qualcomm. And then sometimes mobile carriers want to do their own testing to make sure they aren't inadvertently introducing other problems onto their network.
All that means the time from when a flaw is identified or disclosed to when it is fixed is longer than it should be, sometimes leaving hundreds of millions of phones vulnerable for weeks or months.
"The problem continues to be that Android security updates are really hard because of [their] fragmented ecosystem," said Check Point mobile security evangelist Jeff Zacuto told Recode.
In this case, the flaw affected such a broad swath of phones because it was an issue at the chip level — and Qualcomm chips power roughly two-thirds of Android phones.
It's worth noting that as bad as things are, they used to be worse.
Google didn't always have monthly security patches, carriers used to be much stingier with allowing quick security updates and device makers did a lot more customizations to Android that further complicated the process.
Qualcomm, for its part, said it was notified between February and April about the various vulnerabilities and made patches available between April and July.
But unlike when Apple releases a security update for the iPhone, that's only one step in the process. Once Qualcomm or Google releases a fix, each handset maker has to tweak it for their phone and then make the update available to customers. In the U.S., updates also sometimes go through the cellphone carrier as well.
Google, meanwhile, says three of the four flaws tied to Quadrooter were patched in an August security update, while the fourth is set to be fixed soon. It also notes that while this is a high-risk flaw, it still requires a user to download a malicious app in order to be affected.
That means those most at risk are people who get apps from places other than the Google Play store, although Zacuto noted that even sticking to official app stores isn't a guarantee of safety.
"They do a great job catching malicious apps, but they don't catch 100 percent," he said.
Despite the lengthy process, Google and Qualcomm say things are improving, with flaws being fixed sooner and more devices getting updates.
"There is an overwhelming consensus that things are getting better, that we are moving things in the right direction," Qualcomm engineering VP Alex Gantman told Recode.
—By Ina Fried, Recode.net.
CNBC's parent NBCUniversal is an investor in Recode's parent Vox, and the companies have a content-sharing arrangement.