The Internet has been abuzz over the recently discovered Heartbleed bug. If you're not already familiar, Heartbleed is a vulnerability in the OpenSSL software library that allows an attacker to steal data directly from the memory space of an application and learn the private keys used to keep data securely encrypted as it travels over the Internet. The implications of this kind of leak are certainly severe, and it has everybody rushing to either install updates that fix the bug or implement workarounds to disable it.
Tumblr has rolled out a new two-factor authentication option that, once enabled, decreases the likelihood of someone breaking into your Tumblr account. Rather than just a password, you will also need to type in a key generated by your Android device. We've already seen Google, Facebook, and Twitter implement this functionality, so while it's about time, it's also better late than never.
You can enable the feature through your Tumblr settings page.
Last month Facebook bought WhatsApp for way too much money, making the app's developers very wealthy individuals. This deal, theoretically, gives Facebook access to the data provided by the app's nearly half a billion users. The companies behind the social network and the instant messenger have both promised that WhatsApp will continue to operate autonomously, but this hasn't completely alleviated privacy concerns. Thus WhatsApp CEO Jan Koum has shared a blog post aimed at "setting the record straight."
In it he states:
Android malware isn't as big of a concern as some mainstream media reports would have you believe, but it is enough of an issue that Google started beefing up its security a few years ago. There's the "Bouncer" server-side scanning that checks apps before they go live, and your device runs app verification as new packages are installed. Now Google is about to patch a hole in the local app scanning by making it run continuously.
Samsung has announced a slew of improvements to its KNOX enterprise security product at this year's Mobile World Congress. For starters, users can now manage two separate secure containers per device, ideal for consultants with multiple clients or people who just want to better separate work data from personal files.
The total list of changes goes much deeper.
- Two separate secure containers per device, for example, for consultants who work for several companies or doctors who work for several clinics.
Remember Piper, the crowdfunded home automation tool we featured almost half a year ago? Well the campaign is over and the gadget is on sale now. Once you get yours in the mail, you'll need to set it up and start using it, which is where the official Android app comes in. Piper Mobile is a free download, compatible with all Android devices running Gingerbread or later.
Piper is a little gadget that combines a wide-angle webcam and microphone with a Z-wave controller.
An international mega-corp like Google buys companies like the rest of us buy coffee. Google's latest latte is SlickLogin, a startup that aims to make authentication simpler and safer by using sonic login codes on phones. The details of the purchase aren't public just yet, but SlickLogin's site confirms that "the [team] is joining Google."
SlickLogin's system is unique: it uses a cell phone as an authentication key with the help of nearly-silent audio codes sent via computer speakers.
Much of the commerce that takes place on the web goes through PayPal, so if you're accessing the service from a mobile device, you should take extra precautions to secure your account. With the latest version, you can now link your phone to your account so that the service can better verify that you are indeed the person trying to access it. The app has a new SMS permission that is necessary to link up your number.
This contest is now over.
The final results are listed below. If you've won, you will be contacted in the near future. Congratulations!
Any decent bank heist movie always has one common hurdle for the would-be thieves: a regularly changing access code to the vault, and only one person knows what it is.