Rooting Android phone bypasses Google Wallet security; just one of many remaining flaws