HTC was the one exception. It's new phone was significantly more secure than the older model. But before we give 'em an attaboy, lets not forget that the Federal Trade Commission in February brought the hammer down on HTC for its dirtbag behavior.
The FTC found a number of egregious security problems on HTC smartphones that placed customers's personal data and privacy at risk. In settling the FTC complaint, the company agreed to fix reported vulnerabilities and to make security part of the design process for new phones.
I believe the FTC should take that settlement and apply it to all manufacturers. But if that isn't what smartphone makers want, then I suggest they enter into serious negotiations with carriers to fix the update problem.
With so many unpatched vulnerabilities, manufacturers and carriers have to negotiate a deal in which the former prepares the updates quickly and the latter moves them to customers. This will cost money, so they have to decide whether to absorb the expense or pass it on to buyers.
Either way, something needs to be done.
Sign up for CIO Asia eNewsletters.