One of the main complaints Apple fanboys will make about Android is that it’s more susceptible to malware, and thereby a more risky choice for a phone, for obvious security reasons.
Google is now making an effort to quell these false claims, and recently released some graphics showing how hard it is to actually have malware damage your device and infiltrate your secure information. Note that their numbers only include devices that have Google Play Services— many phones without Google Play, such as those from China and Russia, are more at risk for malware.
Google’s Android Security chief Adrian Ludwig says that there are many layers of Android security constantly at work, and because of this, only .001% of all malware is even able to attempt to evade security, let alone actually get through.
The numbers get lower and lower as you pass through the multiple layers, as you can see from the graphic above.
This is not to say you should always be careful, especially when sideloading applicatoins, or if you have an untrusted app store on your device, which are the most common ways to get any type of malware on your device.
CyanogenMod’s update to version 10.2 will bring plenty of welcome improvements, and one of them is an updated Privacy Guard app to version 2.0. This app currently allows users to manage app permissions, not only displaying what apps have access to what information, but letting the users control which information they will voluntarily share with their apps.
Privacy Guard 2.0 will integrate “AppOps,” which lets the system remove permissions and return empty data sets when permissions are denied for an app. You will be able to easily switch on/off individual permissions for things such as location, reading contacts, SMS/MMS, etc. A notifications feature has also been added which will let you know when you are using an app that has permissions blocked that it requires to run. It’s definitely a good troubleshooting tool for when your app suddenly doesn’t work anymore after it doesn’t have the ability to use your device’s GPS, for example. The UI has also been changed a bit to make it simpler to navigate the app. It’s definitely a nice addition to CM 10.2 and we’re looking forward to seeing what other goodies are in store from the CM team.
The Android Device Manager has added the new remote lock device option to the desktop version of Google Play, and can be found under the “gear” icon at the rightmost part of the screen. Once in the module, you’ll be given the option to either make your phone ring at full blast (no matter the current volume setting on your device), lock it with a new lock pattern (overriding the current lock pattern/PIN), or doing a complete factory reset— all without touching your device.
This will certainly make users feel a lot more comfortable when misplacing their device, especially if you have important information on your phone, for your eyes only. If your phone is in airplane mode, the changes will take place as soon as the device is connected to a network.
In a move that would certainly boost competition, consumer choice, and overall happiness in the mobile device community, the Obama administration is pushing the FCC to mandate that US carriers must unlock some of their future devices. According to the Washington Post, activists devised a petition to garner support, and they were able to collect 114,000 signatures.
Lawrence Strickling, assistant secretary of the NTIA made a comment regarding the petition:
“Americans should be able to use their mobile devices on whatever networks they choose and have their devices unlocked without hassle.”
However, the move would likely only affect GSM devices, leaving CDMA phones alone in the dark. However, we’ll just have to wait and see.
Source: Washington Post
On the heels of the public’s worries about the NSA and “big brother” checking in on us, Wickr has released its app to Android devices, as it was already available through the iOS App Store.
The application allows users to send encrypted messages anonymously and privately, and users can also select an option which will cause your message to be permanently deleted after a certain time period ends, much like Snapchat’s well-known feature.
Here are some words from Wickr’s co-founder, Robert Statica:
“Wickr not only offers the most secure form of correspondence but also helps protect our users’ contacts as we anonymize this information before it leaves the senders phone. Wickr does not collect any personally identifable information on users nor can we read any messages or contents sent through Wickr, therefore, no criminal or rogue government can take them from us.”
So if you’re truly worried about the government and those “big bad corporations” spying on you, it looks like Wickr is the perfect app for you. Hit the break for a video and the link to the app in the Play Store. Read more
Security is the buzzword these days and passwords are one royal pain in the you know what. Even locking your phone is a pain. That is why I like Apple’s implementation of the fingerprint scanner. However, Google might be headed in a completely different direction. As you know Google has embraced Near Field Communications (NFC) for a few years now, while Apple doesn’t even talk about it.
According to the Wall Street Journal, Google is testing an NFC security token. Hardware tokens aren’t anything new. Most traditional versions generate random numeric passwords, but the user has to retype them each time they want to login. This form, created by Yubico, Inc., could work by simply touching it to your Android phone or tablet using NFC or it could also be used as a USB plugin on your desktop or laptop. Google would use this token to log into Gmail and other Google services. I should note that Yubico already offers the YubiKey (pictured above) and can be used just like what I described. It can actually be used with Gmail’s 2 step verification. How Google will change it, remains to be seen, but WSJ says Google “plans to offer to consumers” next year.
With everything going on surround the NSA and privacy, a lot of people are nervous about just about every form of security. The latest is Wi-Fi passwords. Michael Horowitz of Computer World is reporting that Google knows all the Wi-Fi passwords that are stored on your Android devices. He states that in Android 2.3.4, if you go to Settings/Privacy and choose “Backup my settings” it will backup your Wi-Fi password on Google servers. Now fast forward to Android 4.2. If you go to Settings/Backup and reset, the option for “Backup my data” specifically says, “Backup application data, Wi-Fi passwords, and other settings to Google servers.”
According to a Wall Street Journal report, one of the announcements Samsung will be making today at the second episode of their Samsung Unpacked 2013 event is the installation of antivirus security software from Lookout Inc. on all Samsung KNOX devices in the coming month. The move appears to be part of Samsung’s attempt to protect business users from the reality that many, if not most, employees are using their personal phones for business purposes. The addition of the Lookout package is another step in that direction as the company tries to get protection out in front of the wall erected by other features on their smartphones. Samsung senior vice president Injong Rhee says, “Lookout is the leader in mobile threat protection and they are uniquely equipped to address business mobile security.” Read more
Google has begun pushing the first-ever update to the 2013 Nexus 7 and will reportedly fix touchscreen problems that some owners were experiencing with their devices.
Google’s Paul Wilcox confirmed the plans to release new firmware on the company’s forums:
“As a couple of you have mentioned, there’s a new system update that’s started rolling out for your Nexus 7s. This update does address the touchscreen issues discussed in this thread. If you’re one of the people experiencing touchscreen issues, please let us know how it’s going after you’ve received and installed the update.”
It’s unknown as to whether the update includes other improvements/bug fixes as well, but it would make sense if it also included the security update that was pushed to other Nexus devices yesterday. Be patient and you should get the update eventually— as we all know, OTA updates are a process.
Source: Google Product Forums
Just yesterday an OTA update which addressed security issues was rolled out to the T-Mobile Nexus 4 and is now being pushed to other Nexus devices, including the Nexus 7, 10, and the Galaxy Nexus. The changes are unconfirmed at this point, but the update is known as JWR66Y. We do have the download link below to manually update your yakju Galaxy Nexus.
Source: XDA – Galaxy Nexus / PhoneArena