Whether we're talking about Twitter, Gmail, bank accounts, or anything else accessible on the web, account security is no joke. As a result, we're starting to see more and more companies take advantage of advanced security methods like two-factor authentication, which requires the user to not only entire a username and password, but also a code typically send via SMS to the user's cell phone. This means that a physical device must be accessible, making it much more difficult for would-be snoopsters to remotely gain access to an account.
Over the weekend, Android Police received a tip about a serious privacy hole in Facebook Pages Manager for Android that made some privately uploaded photos public. Shortly after I made the details of the issue public, Facebook Security got in touch and let us know that its engineers were looking into the report and trying to get a fix up soon.
At 4:19pm PT today, I received a follow-up email from Facebook Security that confirmed a fix had been rolled out server-side, and no app update was necessary.
Note from Artem: The post's author, Justin Case, also known as jcase in the Android community, is an xda Elite Recognized Developer, AP team member, and an all-around knowledgeable guy when it comes to Android's internals. When he speaks, I tend to listen.
The Android world was slapped in the face when well-known developer AndreiLux made a post in the XDA Galaxy S4 forum titled [Info] Rooting will be impossible on newer stock kernels.
After a brief delay, it looks like AT&T's Digital Life service is finally ready for prime time. The service, which promises extensive home automation from temperature control to security monitoring to door lock control, will launch first in fifteen markets including Atlanta GA, Austin, Houston, and Dallas TX, Boulder and Denver CO, Los Angeles, San Francisco, and Riverside CA, Miami FL, Philadelphia PA, Seattle WA, St Louis MI, and "select areas of the New York and New Jersey metropolitan area." By the end of the year, AT&T says it plans to expand the service to fifty markets.
Sprint Galaxy SIII owners fire up your "check now" fingers – you'll be getting a software update to version L710VPBMD4 soon, bringing a home screen security fix and a few other changes.
Specifically, the update – slated to start rolling out April 24 – brings Multi-View functionality (by which you can split the screen for multi-tasking purposes), enhancements to the camera and gallery apps, the addition of Samsung's Paper Artist photo editing app, and unspecified bulk SMS enhancements.
While the Explorer Editions of Google Glass are making their way out to the lucky early adopters (with extra cash), the rest of the world is wondering when it can get its eyeballs on the product. According Eric Schmidt speaking to Radio 4, the answer is roughly a year from now.
He also believes that the technology behind Google Glass goes beyond just this one product:
"Burner" cellphones, pre-paid phones that are used and discarded, have become a handy way to protect your identity if you find yourself dealing with people you might not otherwise want to meet. Just lately it has become possible to get "disposable" phones without the phone, thanks to apps like Hushed, which provides a limited-use virtual number that can be easily substituted for your real one. Burner is a new competitor in the same vein, happily landing on Android after considerable success on iOS.
According to a forum post on AT&T's support site and some scattered user reports, the carrier's Galaxy S II variant is receiving a small update today. Rolling out over the air as you read these words, the software fixes an issue where devices would become unresponsive or power down while idle.
The update also includes the requisite "security enhancements." If you haven't updated your phone to 4.0 yet, well for starters, why not?
You'd think the concept of a lockscreen would be simple. It, you know, locks the phone. Several OEMs have still ended up with bugs that allow users to get around the lockscreen completely. The newest such vulnerability has been discovered in Sony's flagship, the Xperia Z. Just a few simple steps, and anyone can gain full access to the device.
In the video, you can see one Scott Reed demonstrating the problem.
The problem with relying on cloud services is that they are prime targets for hackers. Earlier today, popular note-storing service Evernote acknowledged that it had detected "suspicious activity" on the network. In its blog post, Evernote specified that the intruder(s) had only gained access to account details, including usernames, email addresses, and encrypted passwords. The announcement further clarified that passwords are protected with one-way encryption, a process where a password is first salted and then hashed to make decryption extraordinarily difficult.