google

Google says phone and tablet makers who alter Android's code to add security measures may actually be undermining security. It says device manufacturers should stick to Android's own measures. Jann Horn of Google's Project Zero security team ... specifically pointed to an alteration made by Samsung for the Galaxy A50 phone, which he says contained a bug that made the device vulnerable to attack. He says he discovered and reported the bug to Samsung in September 2018 but it wasn't patched until Samsung's security updates released this month. (Source: blogspot.com ) Ironically Horn believes the ... (view more)

Google has removed more than 500 rogue Chrome extensions that were scamming both computer users and advertisers. Some rogue extensions have been operating for more than a year. The rogue extensions were spotted by security researcher Jamila Kaya and ... Jacob Rickerd of Cisco. They used a Cisco security tool called CRXcavator that's specially designed to assess Chrome extensions. (Source: duo.com ) The pair worked on a project to try to spot common patterns of bogus extensions. They started by assessing "a few dozen" extensions they knew to be rogue and were able to use patterns to expose 70 ... (view more)

A security company has spotted 17 rogue Android apps that users should immediately delete. All 17 apps were approved by the Google Play store, where they managed to get past Google's security checks. Bitdefender, which published the list of apps, ... says the apps aren't malware as such. However, they use tactics associated with malware creators and could seriously inconvenience users. Bitdefender dubs this as 'riskware'. The List Of Shame The apps to immediately delete are: 4K Wallpaper (Background 4K Full HD) Backgrounds 4K HD Barcode Scanner Car Racing 2019 Clock LED Explorer File ... (view more)

The Chrome browser may soon put less drain on processors and battery life in Windows 10. Perhaps surprisingly, that's because of changes made by Microsoft rather than Google. The relevant tweaks were discovered by Microsoft as part of its work to ... rebuild the Edge browser that comes with Windows 10. Originally it ran on Microsoft code, but the new version of Edge is now based on Chromium. For those unaware, Chromium is an open source project, which is the basis of Google's Chrome browser. Microsoft found one cause of battery drain was disk caching during online video playback. In simple terms ... (view more)

Google says it will block third-party cookies, which can track Internet users in ways they don't expect. But it could be up to two years before the block is fully in place. A cookie is a small text file placed on a user's computer by a website. The ... idea is the site can check for the cookie later on and customize the users' web experience. Examples of 'legitimate' cookie use would be an online store that holds items in a virtual 'shopping basket', and a movie theater chain's site 'remembering' a user's location to automatically show them local listings. The more controversial variant is third- ... (view more)

50 privacy groups have urged Google to crack down on pre-installed "bloatware" on Android devices. They say the apps haven't been properly vetted and could threaten privacy. Bloatware refers to software that is already installed on a device when a ... user first starts it up. With Android phones it's particularly significant as it's difficult or even impossible to uninstall. Sometimes manufacturers consider such apps to be genuinely useful for phone owners and even part of the appeal of getting a handset. In other cases it seems more likely the manufacturers have struck deals with developers to ... (view more)

Security researchers say a serious Android bug could let malware pose as a legitimate app and gain unwanted access to a phone's data and functions. The concept of the 'StrandHogg' bug has been known for several years, but now it's being actively ... exploited to target online banking. In simple terms, the bug has two unwanted effects: it can trick users into giving malware sensitive 'permissions' to access the phone, and it can hijack legitimate apps to trick users into handing over login details and sensitive information. Researchers at Promon explain the bug is with a security setting called ... (view more)

Facebook is to let users automatically copy their uploaded photos and videos to Google's photo service. It's part of a "data portability" project between tech giants, but is also a demonstration of how slowly the project itself is moving. The tool ... will mean users can transfer files without needing to download them to their devices, then re-upload them to another service. In particular, Google's Photos service makes it easy to access photos on multiple devices. It also has automatic tagging so that users can quickly find all their photos of a particular location or activity, for example. It's ... (view more)

Google is experimenting with ways to inform Chrome users when a web site likely to be slow to load. In doing so, it wants to penalize poorly coded sites - though critics say that's not always the main reason for a delay. The idea is a form of ... "badging" that will appear in the browser. It's a sign of how potentially controversial the subject is that Google is thinking of informing users in this way rather than simply downgrading such sites so they appear lower in search rankings. The initial tests will be based around the general point of whether a site is slow to load. Later on, Google may ... (view more)

Google is to use outside help to scan apps before they go into the Google Play store. It says the move is needed to cope with the continuing increase in the number of rogue Android apps. Just two weeks ago, 21 Android apps were reported to be rogue ... ; in early September, 24 apps were found to be rogue . The new "App Defense Alliance" involves Google working with three security companies, namely: ESET, Lookout and Zimperium. They all specialize in mobile security with a particular emphasis not just on spotting individual rogue apps, but on figuring out common characteristics and clues ... (view more)