When we shell out our hard earned dollars on the latest smartphone we expect that phone to be updated to Android’s latest and greatest into the foreseeable future. Not only is it gratifying to have the newest software on our device, but with ever increasing threats from malware, such as this new Google Adsense bug, there is also a huge security risk to having outdated software. Unfortunately, getting devices onto the newest software still remains a huge problem for the Android ecosystem. Just take a look at the latest Android distribution numbers and you’ll see what I am talking about. Huawei sub-brand Honor is looking to help ameliorate those problems a little bit with all its newest phones. According to a Huawei’s Taylor Wimberly, Honor is going to begin delivering an enhanced software experience for the latest Honor devices.
Security researcher Salvador Mendoza revealed last week that he has discovered a weakness in Samsung Pay security that could allow an attacker to skim credit card tokens. Once a token is grabbed by an attacker, it can be used on other phones to make fraudulent payments. The source of the weakness is found in the magnetic secure transmission (MST) technology which is unique to Samsung Pay and allows it to be used with standard card swipe hardware at retailer locations. Read more
When BlackBerry was flying high in its heyday, one of the benefits of the devices was how well they played with corporate IT environments, especially the heightened security requirements. Since then the company has tumbled, but recently has been trying to make a comeback on the back of Android powered devices. Today BlackBerry officially announced the launch of the new BlackBerry DTEK50, which the company describes as “the world’s most secure Android smartphone.” Read more
After a report surfaced indicating the new Moto Z and Moto Z Force may not be getting regular security updates for Android, the company has issued a statement confirming the device will be getting the security patches. Part of the confusion may have stemmed from the fact that devices shipping early to some reviewers are only updated through the May patch and even the units that will be hitting consumer hands initially will be at that same patch level. However, Motorola indicates they do have plans to issue the June and July Android security patches soon after the official July 28th launch. Read more
Against the backdrop of news about the HummingBad malware infecting Android devices, Google has released their monthly security update for July. The latest batch of patches addresses over 100 issues, many of them in Android’s own components, along with manufacturer’s chipset specific drivers. Read more
Earlier today it was discovered that a group called OurMine, variously described as hackers or a security firm depending on your frame of reference, managed to hack into the Quora account for Google CEO Sundar Pichai. In addition to the Quora account, the group also managed to establish a connection to Pichai’s Twitter account, which they then used to publicize the success of their efforts. Read more
Twitter has managed to keep their servers safe amidst reports of attempts to hack them to gain access to user accounts. However, the company has acknowledged that it appears attacks and breaches on other web sites may have put user accounts at risk. To combat this, Twitter has taken to locking some accounts over the past few days pending owner password resets and they have posted an entry on their site with information on the current situation and tips for users. Read more
It’s that time of the month again where Google posts its monthly Android Security Bulletin. The Bulletin for June is rather interesting, as there was a pretty big vulnerability where code could be executed through email, web browsing, and MMS by processing media files.
Some phones are ugly, some are bulky, some are too expensive, and some have a combination of problems. No phone manages to have all of these problems quite like Sirin Labs’ Solarin smartphone, however.
It’s a privacy-focused phone (which is good!) that costs over $16,000 (not so good!) with a terrible design. Yikes. Read more
The Federal Communications Commission (FCC) and Federal Trade Commission (FTC) announced today that they have begun investigating why it takes mobile devices in the US so long to get security patches, and that’s if those mobile devices even see a security patch at all during its life cycle.