Samsung’s Galaxy S8 iris scanner may help users unlock financial transactions

New reports out of Korea indicate there may be some growing interest from financial firms like banks or credit card companies to incorporate iris scan security into the methods used to secure financial transactions. Iris scanning may be familiar to more users now with the launch of the Samsung Galaxy S8 and Galaxy S8+ which both make use of the technology as a way for users to unlock their devices. The latest interest shown in this technology could open the door to its use for security purposes when consumers make use of mobile payment platforms.

U.S. President Donald Trump won’t give up his unsafe Android phone

Donald Trump, the new President of the United States, doesn’t like being told what to do. His brash, straightforward behavior is what helped him get into the White house. But you’d think the people around Trump would be listened to when they explain his phone needs to be replaced for security reasons. After all, this is the man that has railed against the intelligence community multiple times.

A new report from the New York Times says Trump is still using his unsafe Android phone.

Ghost Push re-appears as Gooligan malware in biggest theft of Google accounts yet


Some old malware that targets older versions of the Android operating system was implicated in the biggest theft of Google account data yet. The malware is called Ghost Push and has been in the wild for a few years now as Google and other security firms have battled to minimize its impact. However, a new variant called Gooligan was determined this past summer, in public statements made today by security firm Check Point and Google, to be implicated in the theft of around 1.3 million Google account credentials.

Android and iPhone security equally safe? ‘For sure’ says Google engineer


In Manhattan, security professionals have assembled this week for the O’Reilly Security Conference, including Adrian Ludwig who is the director of security for Google’s Android platform. During the conference and in a subsequent interview, Ludwig addressed comparisons between Android and iOS in terms of security. Despite concerns that Android may lag behind Apple’s platform thanks to the more open nature of the ecosystem, Ludwig says the two are “nearly identical in terms of their platform-level capabilities.” Ludwig not only points to Pixel devices and iPhone devices being on equal footing, he claims Android will surge ahead in the near future.

Google posts October’s security update for Android


Many of us are waiting patiently to see Google announce a raft of new devices later today, as well as wondering if the much-leaked Pixel and Pixel XL handsets have anything left to surprise us with. Until the launch event begins, Nexus and Pixel C owners will be glad to hear that the search giant is in the process of rolling out its October Security Bulletin for Android devices.

Yahoo expected to announce major data breach affecting 200 milion users


Yahoo was most recently in the news when the wireless carrier, Verizon, snapped the company up for around $4.6 billion after it failed to turn its fortunes around in the search engine and advertising segments, a deal that is still subject to regulatory approval. Today, Yahoo has made the headlines due to reports surfacing that it suffered a security breach back in 2012, with the details of around 2 hundred million Yahoo users being up for grabs on the dark web. As such, the search company is expected to make an official announcement on the issue sometime this week. 

Google launches new Project Zero Prize to find Android vulnerabilities


Although Google already has programs in place to encourage hackers and developers to help identify bugs in their code, especially items that could be used as the basis of a vulnerability, some recent Android episodes have highlighted the need to step things up a notch. In response, Google’s Project Zero team announced today a new contest called the Project Zero Prize that could yield $200,000 for the winning entry.

Honor commits to 24 months of software and security updates for new phones


When we shell out our hard earned dollars on the latest smartphone we expect that phone to be updated to Android’s latest and greatest into the foreseeable future. Not only is it gratifying to have the newest software on our device, but with ever increasing threats from malware, such as this new Google Adsense bug, there is also a huge security risk to having outdated software. Unfortunately, getting devices onto the newest software still remains a huge problem for the Android ecosystem. Just take a look at the latest Android distribution numbers and you’ll see what I am talking about. Huawei sub-brand Honor is looking to help ameliorate those problems a little bit with all its newest phones. According to a Huawei’s Taylor Wimberly, Honor is going to begin delivering an enhanced software experience for the latest Honor devices.

Samsung Pay vulnerability to electronic skimming exposed


Security researcher Salvador Mendoza revealed last week that he has discovered a weakness in Samsung Pay security that could allow an attacker to skim credit card tokens. Once a token is grabbed by an attacker, it can be used on other phones to make fraudulent payments. The source of the weakness is found in the magnetic secure transmission (MST) technology which is unique to Samsung Pay and allows it to be used with standard card swipe hardware at retailer locations.

BlackBerry DTEK50 Android phone launches as ‘most secure’


When BlackBerry was flying high in its heyday, one of the benefits of the devices was how well they played with corporate IT environments, especially the heightened security requirements. Since then the company has tumbled, but recently has been trying to make a comeback on the back of Android powered devices. Today BlackBerry officially announced the launch of the new BlackBerry DTEK50, which the company describes as “the world’s most secure Android smartphone.”

New Moto Z devices to get security updates, schedule unclear


After a report surfaced indicating the new Moto Z and Moto Z Force may not be getting regular security updates for Android, the company has issued a statement confirming the device will be getting the security patches. Part of the confusion may have stemmed from the fact that devices shipping early to some reviewers are only updated through the May patch and even the units that will be hitting consumer hands initially will be at that same patch level. However, Motorola indicates they do have plans to issue the June and July Android security patches soon after the official July 28th launch.

Google CEO Sundar Pichai latest exec targeted by OurMine


Earlier today it was discovered that a group called OurMine, variously described as hackers or a security firm depending on your frame of reference, managed to hack into the Quora account for Google CEO Sundar Pichai. In addition to the Quora account, the group also managed to establish a connection to Pichai’s Twitter account, which they then used to publicize the success of their efforts.

Twitter battling security breaches impacting user accounts


Twitter has managed to keep their servers safe amidst reports of attempts to hack them to gain access to user accounts. However, the company has acknowledged that it appears attacks and breaches on other web sites may have put user accounts at risk. To combat this, Twitter has taken to locking some accounts over the past few days pending owner password resets and they have posted an entry on their site with information on the current situation and tips for users.