We’re only one week into March, and that means a monthly security update is due for Android devices. Google published details regarding March’s security update earlier today with a massive list of patches and other goodies.
You might some commotion about a year ago over Verizon’s tracking cookies for phones on their network. Big Red was tracking usage habits about users on the network, without alerting users or giving them a way to opt out of the tracking, but apparently they didn’t do a good enough job in giving customers control over everything, as the FCC has slapped with a fine over the ordeal.
Proving the old adage that no good deed goes unpunished, mobile security company Skycure revealed a proof of concept malware at the RSA cyber security conference this week that attacks Android devices via a technique called “accessibility clickjacking.” The attack has been shown to work on versions of Android up through KitKat placing over half a billion Android devices at risk.
Samsung will be joining an ever growing number of companies to support Apple on their decision to fight the US government and its want for backdoors into mobile devices. Samsung specifically said customer privacy is “extremely important” and anything used to compromise that would sabotage trust.
Sundar Pichai recently publicly tweeted in support of Apple’s stance against the FBI in the ongoing encryption debate between the government and the iPhone maker. Now he’s taking it step further, and Google as a company is filing a legal brief to support Apple in this standoff.
With security in the headlines the past couple days, users may once again be considering methods and apps to help secure their logins. Password managers are increasingly getting attention from consumers, especially as they continue to add features making them easier to use and more functional. One of the apps that made our list of the best password managers this year, Enpass, has announced a major upgrade to their platform to version 5.0 that brings two key improvements.
In case you haven’t seen it yet, Tim Cook publicly released a letter against the FBI’s request for Apple to create software that would allow a backdoor into iPhones for national security reasons. Needless to say, that letter has sparked a ton of conversation around the encryption debate, and it’s bringing some other big names into the mix.
Each and every day, pins and passwords are becoming more and more a relic of the past thanks to new biometric authentication processes such as our fingerprints. It looks like Tencent’s WeChat mobile payment services will be the latest to join the biometric security revolution thanks to Qualcomm’s Snapdragon processor series.
A new round of malware is making its way through Europe after starting by infecting phones in Denmark. The malware, called Mazar, is installed through a malicious text message, and it then routes all internet traffic through a proxy where the malware can capture sensitive information that’s sent and received from the phone.
When Android 5.1 was announced last year, Google revealed that the firmware carriers a new security protocol that makes it harder to factory reset stolen devices. What the functionality does is enforce a procedure that requires users to enter the credentials of the Google account that was linked to the handset before its system-wide wipe.
Unfortunately for LG owners, it appears that there’s a bug on the South Korean company’s phones making it incredibly easy to bypass the newly-introduced factory reset protection.
Anti-virus and security company Lookout is reporting today that they discovered several apps in the Google Play Store that are part of the Brain Test family of malware. Brain Test attempts to gain root privilege on Android devices and can persist even through factory resets or other measures taken by users to remove it once discovered. Google has already removed 13 new apps that were identified in Lookout’s latest efforts.
There’s some great news for those of you who don’t like waiting for the OTA to hit your Nexus device. The January security patch can now be downloaded straight from Google via the newest factory images.
Back in 2011, when the smartphone market was still relatively young, Carrier IQ earned a degree of infamy by being one of the first companies discovered to be collecting detailed user data and information surreptitiously on mobile devices. Since then, Carrier IQ has managed to stay out of the limelight until now when it was announced that AT&T has acquired rights to Carrier IQ’s software and to some staff that is coming on board at AT&T. At the same time, the Carrier IQ web site has gone dark and it is unclear what the status of the company is.