Android Police

Articles Tagged:

security

...

Google Announces New Update Policy For Nexus Devices Including Monthly Security Patches For 3 Years And Major OTAs For 2 Years From Release

Google is rolling out the Stagefright patch to Nexus devices as promised, but the bigger news alongside that announcement is a new update policy for Nexus devices. Going forward Google will release security patches for Nexus phones and tablets about once per month, which mirrors Samsung's recently announced Galaxy update program. Google is also making official the length of time you can expect to get Nexus updates.

Read More
...

Sprint's Galaxy Note 4 Gets Android 5.1.1 Update With Stagefright Vulnerability Fix

The Samsung Galaxy Note 4 is getting an OTA update today, and it takes the device from 5.0 up to 5.1.1. That means a few small tweaks to the system, but there are also some important bug fixes, including one for the Stagefright vulnerability.

Read More
...

Vast Majority Of Android Devices Are Vulnerable To 'Stagefright' Exploit That Can Be Executed Via Text Message, According To Researchers

In a blog post published today by the researchers at Zimperium Mobile Security, the group divulged an extremely widespread security vulnerability that can be exploited with nothing more than a targeted MMS message. The hole exists in the part of the Android operating system called Stagefright, which handles the processing of certain types of multimedia.

How it works

If targeted, the hypothetical hacker needs only to send an MMS message, which in many cases doesn't even need to be read before the attacker gains access to the victim's microphone and camera.

Read More
...

Google Posts Details Of User-Facing Verified Boot System, Probably Coming In Android M

Google has just added an interesting page to the Nexus support site that lists new operating system safety warnings. According to the page, this is a boot verification system that checks the integrity of your device software during each startup. You probably haven't seen this on any devices yet, but Android M is right around the corner.

Read More
...

[Weekend Poll] Fingerprint Scanners: Must-Have Or Meh?

Fingerprint scanners are finally coming into their own - near-instant touch readers are replacing tired, old, swipe scanners, and they're more accurate, much faster, and a hell of a lot easier to operate. But do you actually want one?

There have been precious few phones with touch-style scanners released to date. The iPhone 6, Samsung Galaxy S6, and HTC One M9+ are the most notable, but they aren't the only ones, and increasing numbers of high-end phones will likely integrate them in the coming months and years.

Personally, I love them - I hate entering a PIN or pattern to unlock my phone, and I don't always wear my smart lock-enabled smartwatch when I'm carrying my phone.

Read More
...

Medium Is Adding Support For Account Sign-in Without A Password (Yes, Really)

Everyone is trying to come up with a better, more secure way to do passwords, but not Medium. Nope, Medium is just getting rid of them. You can now create and sign into a Medium account using only your email. This works on the web and iOS right now, and will be added to the Android app soon.

1-TLx9pgnmdC5gaJljYaxrrA

Read More
...

Google Announces Android Security Rewards, Will Pay You To Find And Fix Vulnerabilities Afflicting Nexus Devices And The Broader Ecosystem

Google pays people to find and close the flaws in its systems. This is pretty common throughout the tech industry, largely because it motivates people to approach from different backgrounds and with contrasting ways of thinking, something you can't get from internal employees. With Google products getting into the hands of billions of people and serving mission critical roles, it's crucial that services and information are safe.

Over the past five years, Google says it has paid over 1.5 million dollars to people that discovered vulnerabilities in Chrome and other products through its Security Rewards program. Now it will expand this program to cover Android.

Read More
...

LastPass Faces Security Breach, Prompts Users To Update Their Master Passwords

Just before the weekend, LastPass came across some suspicious activity on its network. It closed off the security breach, but only after the bad guys had made off with some personal information. The incident serves as a reminder of the risks inherent with trusting a company and web service with your security.

Screenshot 2015-06-15 at 4.32.04 PM

The team found no evidence that any encrypted vault data was taken. This means you shouldn't have to change passwords on sites that you've stored in your LastPass account.

That said, some email addresses, password reminders, authentication hashes, and server per user salts were compromised. As a result, LastPass is prompting everyone to update their master passwords (and you should go change your password if you've reused it on any other sites). The company is also requiring all users who log in from a new device or IP address to first verify their accounts unless they have turned on multifactor authentication.

Read More
...

[I/O 2015] Android M Will Support Fingerprint Readers For Device Unlocking, Mobile Payments, And App Authentication

Google has made fingerprint scanner support in Android official, but of course we knew that was coming. The Nexus 6 was supposed to have a fingerprint reader, but now future Android devices will be able to reap the benefits of native biometrics. This will be used for accessing the device, of course, but that's not all.

IMG_0008

Read More
...

Report: NSA And Allies Planned To Hack Play Store, Successfully Exploited UC Browser For Years

In the latest update on NSA documents leaked by Edward Snowden, The Intercept is reporting on the surveillance establishment's efforts to use the Google Play Store to distribute spyware. Another fun fact from the data dump is that these agencies found and exploited a security hole in the ultra-popular UC Browser for years until an activist group informed its developers about it just about a month ago.

The information comes from a set of slides distributed to agency specialists in 2012 discussing plans for the use of mobile devices in surveillance. These initiatives were a cooperative between the so-called "Five Eyes" countries: USA, UK, Canada, Australia, and New Zealand.

Read More
Page 7 of 29«First...56789...20...Last»