Search Results for android

Millions of Android devices are vulnerable right out of the box

Written by

Wired:

Security meltdowns on your smartphone are often self-inflicted: You clicked the wrong link, or installed the wrong app. But for millions of Android devices, the vulnerabilities have been baked in ahead of time, deep in the firmware, just waiting to be exploited. Who put them there? Some combination of the manufacturer that made it, and the carrier that sold it to you.

And:

“The problem is not going to go away, because a lot of the people in the supply chain want to be able to add their own applications, customize, add their own code. That increases the attack surface, and increases the probability of software error,” Stavrou says. “They’re exposing the end user to exploits that the end user is not able to respond to.”

This problem is an end result of Android allowing third party companies the ability to modify the source code. An example:

Take the Asus ZenFone V Live, which Kryptowire found to leave its owners exposed to an entire system takeover, including taking screenshots and video recordings of a user’s screen, making phone calls, reading and modifying text messages, and more.

This is a fascinating read. This loss of centralized security control is yet another thing that keeps me in the Apple ecosystem. I do recognize that macOS, iOS, et al have flaws, but the centralized security model (All the system software comes from Apple, not a third party) and the commitment to privacy do make me feel safer.

Google is quietly working on a successor to Android

Written by

Bloomberg:

For more than two years, a small and stealthy group of engineers within Google has been working on software that they hope will eventually replace Android, the world’s dominant mobile operating system. As the team grows, it will have to overcome some fierce internal debate about how the software will work.

The project, known as Fuchsia, was created from scratch to overcome the limitations of Android as more personal devices and other gadgets come online. It’s being designed to better accommodate voice interactions and frequent security updates and to look the same across a range of devices, from laptops to tiny internet-connected sensors.

Fantastic read. I hope Fuchsia solves the security problems and offers privacy options absent from Android.

The company must also settle some internal feuds. Some of the principles that Fuchsia creators are pursuing have already run up against Google’s business model. Google’s ads business relies on an ability to target users based on their location and activity, and Fuchsia’s nascent privacy features would, if implemented, hamstring this important business. There’s already been at least one clash between advertising and engineering over security and privacy features of the fledgling operating system, according to a person familiar with the matter. The ad team prevailed, this person said.

Feh. Not holding my breath.

Android has it, iOS needs it: Copy two-factor codes from text message

Written by

Jacob Kastrenakes, The Verge:

If you use two-factor authentication to secure your accounts, you’re probably used to this process: type in your password, wait for a text messaged code to arrive, memorize the code, and then type it back into the login prompt. It’s a bit of a pain.

Absolutely. Happens a lot. And this describes the process pretty well. Android has a fix:

In the new update, Messages will detect if you’re receiving a two-factor authentication code. When it does, it’ll add an option to the notification to copy the code, saving a step.

This is a step in the right direction. When a two-factor text is received, a copy button appears at the same time. Tap it, then paste it into the prompt.

It’d be nice to see this in iOS. But even better, it’d be nice to avoid the codes in the first place. The purpose of the codes is to prove that you have access to a verifying device. The codes themselves exist purely to give you a way to “move” the verification from the second device back to the original.

But iOS already does such an excellent job communicating between devices. I can copy on my iPhone, paste on my Mac, for example. And if the code is coming in on the same device that made the request, well that’s even easier.

What I’m suggesting is that Apple/Google work to create a verification service that eliminates all the friction. If I request a code on my Mac, popup a verification text message on my iPhone and, worst case, just make me tap “Yep” on an alert to verify the code, or “Nope” to let them know I didn’t make the request.

No reason for me to copy/paste or type in a number. Tap “Yep” and I’m in. Let the verification handshake happen in the background. Any reason this can’t be done?

Two new iPhone ads push switch from Android

Written by

[VIDEO] The first ad pushes the speed and elegance of the iPhone 8 Plus and iPhone X Portrait Lighting. Android is not mentioned by name, but pretty sure that’s what’s meant by “your phone” (all lower case).

The second ad is about security against malware, this time comparing “your store” (all lower case) with the  App Store. The exploding malware nose icon was a pretty good bit.

Both ads are embedded in the main Loop post.

Refurbished, high-end iPhones are suffocating the growth of cheap new Androids

Written by

Daniel Eran Dilger, AppleInsider:

The fastest growing segment in global smartphones isn’t Google’s vision for super-cheap, simple Android phones. Instead, according to new market data, it’s refurbished high-quality phones that carry a desirable brand but can be sold at a more affordable price, a segment where Apple is “leading by a significant margin.”

And from the original study from Counterpoint Research:

The low growth of the new smartphone market in 2017 can be partially attributed to the growth of the refurb market. The slowdown in innovation has made two-year-old flagship smartphones comparable in design and features with the most recent mid-range phones. Therefore, the mid low-end market for new smartphones is being cannibalized by refurbished high-end phones, mostly Apple iPhones and, to a lesser extent, Samsung Galaxy smartphones.

This is a pretty interesting development. Apple has added another layer to this market, a layer that it dominates.

Android Nougat, which first shipped in August 2016, finally surpasses Marshmallow as most used Android version

Written by

Up until this week, the most used version of Android was Marshmallow, which shipped in October of 2015. That has now changed.

As you can see in this official Android pie chart, Android Nougat (which shipped in August 2016) has just squeaked by, with an adoption rate of 28.5% (as opposed to Marshmallow’s 28.1%).

Here’s the current (as of January 18th) iOS adoption picture:

iOS 11, which shipped this past September, is used on 65% of devices. Fragmentation is still a big issue for Android. If nothing else, those old versions of Android carry the malware susceptibilities that, presumably, have been patched in the most recent version of Android, called Oreo.

The capper? Oreo was released one month before iOS 11 and has an adoption rate of about 1%.

Games on your phone (mostly Android, some iOS) that track what you watch on TV

Written by

Sapna Maheshwari, New York Times:

At first glance, the gaming apps — with names like “Pool 3D,” “Beer Pong: Trickshot” and “Real Bowling Strike 10 Pin” — seem innocuous. One called “Honey Quest” features Jumbo, an animated bear.

Yet these apps, once downloaded onto a smartphone, have the ability to keep tabs on the viewing habits of their users — some of whom may be children — even when the games aren’t being played.

Yesterday, we posted about a technique ad houses use to glean your identity using your browser’s password manager.

This is a similar data-farming trick, this time using your phone’s microphone to track your TV watching habits.

The apps use software from Alphonso, a start-up that collects TV-viewing data for advertisers. Using a smartphone’s microphone, Alphonso’s software can detail what people watch by identifying audio signals in TV ads and shows, sometimes even matching that information with the places people visit and the movies they see. The information can then be used to target ads more precisely and to try to analyze things like which ads prompted a person to go to a car dealership.

Most of this occurs in the Android universe, but some iOS games use Alphonso as well. I’m willing to bet that though the games ask permission to use the microphone, not one of those games adds in, “so we can eavesdrop, track your TV viewing habits”.

This is despicable. Apple should do something about this.

[Via DF]

UPDATE: Missed this nugget:

Mr. Chordia [Alphonso CEO] said that Alphonso has a deal with the music-listening app Shazam, which has microphone access on many phones. Alphonso is able to provide the snippets it picks up to Shazam, he said, which can use its own content-recognition technology to identify users and then sell that information to Alphonso.

Shazam, which Apple recently agreed to buy, declined to comment about Alphonso.

We’ve reached out to Apple for comment.

Matt Birchler: Android Oreo, as seen through the eyes of an iOS user

Written by

Matt Birchler has his magnum opus, a massive 8-part, 13,000 word review of Android Oreo. But written with iOS in mind.

It’s a worthwhile read, lots of talking points, a chance to see what switching to Android would be like.

If you are considering the move, read this first. Nice job, Matt.

Android to iPhone: What I’ve liked about switching to the iPhone X

Written by

This is a two part series, written by David Ruddock, Android Police.

The first part, titled, I’ve never used an iPhone, part one: Switching to the iPhone X and first thoughts, ran a few weeks ago.

The second part, titled, Android to iPhone, part two: What I’ve liked about switching to the iPhone X, ran last week.

There’s a lot to process in these two posts. Some of the comments reflect someone new to the iPhone X and new to iOS. But all in all, solid takes, both the negative and positive.

A couple of highlights from the most recent post:

When I first started using iMessage, I immediately appreciated how much it modernized my texting experience (I do a fair bit of SMSing) when chatting with my iPhone-using friends and family.

And:

I would use an iMessage client for Android in a heartbeat if Apple were to release one. Even if it were terrible, I’d probably seriously entertain paying a subscription for such a thing. It’s not about iMessage being amazing or revolutionary or even an especially good messaging client – it’s just about using the same platform as my friends and family and being able to have those conversation move seamlessly across devices and operating systems.

And:

I know a lot of people turn off haptic feedback on their smartphone. That is because, I have now learned, essentially every Android smartphone has absolutely awful haptics. Your $930 Galaxy Note8 has haptic feedback that is, frankly, bad. So does every other Android phone. Yes, the difference is that clear after going to the iPhone X.

Apple’s Taptic Engine doesn’t just buzz – it clicks, it taps, it knocks. And it can do so with an incredible range of intensities and precision.

And:

I do miss intelligent package tracking being pulled directly from my Gmail (versus now just getting Amazon tracking, which is a bit of a downgrade).

This last was an interesting core difference between iOS and Android. I do see the Android advantage in reading all my emails and understanding that I’ve got a package coming, weaving intel about the package into my notifications.

But the issue is privacy and what is done with my private information. Google profits off the shared details of its users, in the form of steered and focused advertising. That is the price you pay for more informed device intelligence. That price makes me uncomfortable.

All in all, an insightful read.

3 top reasons people dump Android for iPhone

Written by

Jonny Evans, writing for Computerworld, on the top reasons switchers are switching to iPhone, as laid out by Creative Strategies. Though the title might seem click-baity, the logic is thoughtful.

A taste:

Today’s smartphone user may have subscriptions with multiple such services. They are also likely to own multiple devices, and that’s where the problem emerges. In contrast to competitors, Apple’s platforms are far better at syncing passwords, settings, images and other items between all your devices using the same Apple ID. You can even set up a new iPhone just by tapping it with your old one in iOS 11.

That kind of convenience makes it so much easier for consumers rapidly engaging in a multi-device, multiple-service, cross platform digital existence. This sync extends across to Apple’s Macs, of course.

Solid read.

Android Oreo: An iOS user’s review

Written by

Matt Birchler, in the introduction to a week long review of the Pixel 2 running Android Oreo:

I have been using the Google Pixel 2, which is the latest and greatest Android phone out there. I chose this phone for my experiment because I wanted to leave no room for my conclusions to be colored by a bad OEM skin on top of Android or by a lower quality phone as my comparisons to iOS should be as fair as possible. Since I wanted to review Oreo, a Pixel was my only option in October, and thankfully that Pixel has top of the like specs and the best Android camera out there. This is Android how Google intended it.

And, then, this TL;DR conclusion:

Android has grown up considerably over the last decade. It’s no longer a complete disaster of a user experience, and some elements have actually surpassed what Apple is doing with iOS. Notifications are much better than they are on iOS and Google Assistant is more accurate and more helpful than Siri. that said, there are a million little (and not so little) things that truly make Android a sub-par experience for me. Your milage may vary, but the abysmal third party software available for the platform, poor inter-app communication, and countless stability issues make Android a place I only want to visit for a month or two per year, not something I can see myself using full time.

Hop over to the front page of Matt’s blog to dig in. He’s got the intro and the first two parts of the review up on the site.

Google collects Android users’ location data even when disabled

Written by

Many people realize that smartphones track their locations. But what if you actively turn off location services, haven’t used any apps, and haven’t even inserted a carrier SIM card?

Even if you take all of those precautions, phones running Android software gather data about your location and send it back to Google when they’re connected to the internet, a Quartz investigation has revealed.

Damn, Google.

iPhone X: The Android Central review

Written by

Daniel Bader, Android Central:

Apple calls iPhone X the future of the smartphone, but after using it for a week — and coming from months of Android use — I can comfortably say that it’s a really great phone. In fact, it is the best iPhone to date, and I’ve had a tremendous time with it, but it doesn’t drastically change my opinion of the iPhone as a product, nor of iOS as an ecosystem.

That’s not to say Google and its hardware partners can’t stand to learn a few things from the iPhone X.

Let’s cut to the chase.

As you make your way through this review, keep in mind that this is written by the Managing Editor of Android Central. I found it to be objective, but clearly told from the view of an Android user. Keep that in mind, but do read the review.

Facebook and Apple can’t agree on terms, so Facebook’s subscription tool will only launch on Android phones

Written by

Peter Kafka, Recode:

Facebook’s effort to help media companies sell subscriptions has hit a snag: Apple.

The two companies are butting heads over Facebook’s plan for a new subscription tool in its mobile app. The tool will put paywalls around some articles in Facebook’s news feed, and then send users to publishers’ sites to buy subscriptions.

The issue: Apple wants to take as much as 30 percent of any subscription revenue Facebook helps generate. Facebook wants all of the money to go to publishers.

This is nothing new. The 30 percent model has been in place since inception. But:

People familiar with Facebook’s plans say Google won’t take a cut of subscriptions users sign up for using its Android operating system.

And there’s the rub. I don’t think there are many people who will switch platforms because of this issue. This is about the publishers.

Note that not every publisher likes Facebook’s subscription plan. Notable holdouts from the test plan the company is announcing today include the New York Times and the Wall Street Journal.

And you can see why. Both the NYT and WSJ have existing paywalls that work for them. This is a complex problem, one I hope gets resolved quickly.

Bill Gates on Steve Jobs and iPhone, John Gruber on Bill Gates and Android

Written by

First things first, take a look at the video embedded in the main Loop post, a Fox News interview with Bill Gates. Jump to about 11:28 in, where Bill is asked about his “famously tempestuous” relationship with Steve Jobs and the new iPhone.

With that in mind, this is John Gruber, from the linked Daring Fireball post:

I say this with no snark intended: who would have guessed 10 years ago that Bill Gates would be using a personal computing device running a non-Microsoft OS? Or really, an OS that didn’t have “Windows” in the name?

And:

While I’m at it, it occurs to me that Apple is the only company left where all its employees are using only systems made by their own company.

Read the whole post, including the update. Fascinating.

Apple Watch vs Android Wear: Why most smartwatches still suck for women

Written by

Serenity Caldwell, iMore:

When I first heard about Android Wear last year, I thought the folks behind the OS were doing a lot of things right. And I still do: the approach to notifications is smart, custom watch faces are neat, and Google Now — while creepy — works exceptionally well at providing smart information for your day.

There’s only one problem: There’s not a single Android Wear device designed to fit a small-wristed person.

Read the post, check out the pictures. If there are new Apple Watch models, I hope they continue to each ship in both 38mm and 42mm sizes. Great design sense on Apple’s part.

CNBC: Thousands of ‘innocent’ Android apps watch videos and view ads behind your back

Written by

CNBC:

That cute cat wallpaper for your Android phone or free photo-editing software app you downloaded may be using your phone without your permission and running up fraudulent ad views, according to a recent report from online marketing firm eZanga.

EZanga used its Anura ad fraud protection software to look at one module from a software development kit (otherwise known as an SDK) that hides in apps, then activates to run advertisements and play videos while the user is not on their phone. While the person may be sleeping, the malware chews up bandwidth and battery life.

And:

A Google spokesperson said all apps submitted to Google Play are automatically scanned for potentially malicious code and spammy developer accounts before they are published. Google said it also recently introduced a proactive app review process, as well as Google Play Protect, which scans Android devices to let users know if they are downloading a malicious app. There is also Verify Apps, which warns about or blocks potentially harmful apps.

And:

Google Play did remove all the apps eZanga named in the study within a few weeks, Kahn said. However, when they looked after the study in early August for the same SDK module, they found 6,000 more apps online (not necessarily in the Google Play store) that contained a morphed version of the malware.

Sounds like there’s a hole in the review process. This is the number one thing that keeps me from buying an Android device.

Android Auto vs Apple CarPlay

Written by

This is painful to watch. It’s even more painful to say that this is a typical experience for me using Siri.

Android vs. iOS: Are iPhones really safer?

Written by

The article leads off with this:

In a new Apple ad, a thief breaks into “your phone” but struggles to get into an iPhone. Here’s how it plays out in the real world.

I was all set to read about how the ad was wrong, that Android phones were actually just as safe. But:

There are several reasons why iPhones are more secure than the various phones running Android software, according to Mike Johnson, who runs the security technologies graduate program at the University of Minnesota.

Side note: That’s no small-time opinion. The University of Minnesota has one of the best computer science programs in the US.

Moving on:

The old rule about PC viruses seems to be holding true with mobile phones, as well. Android phones make up more than 80% of the global smartphone market, and hackers are more likely to succeed if they write programs for these devices, just because of sheer numbers.

The Windows vs Mac logic. Certainly true.

Plus, he says, the process of “patching” security holes is easier on iOS devices. Apple’s iOS operating system only runs on iPhones, while Alphabet’s Android software runs on phones made by numerous manufacturers. It’s more complicated to deliver patches, or bug fixes, that work across so many device makers and carriers. Android can release a patch, but it won’t necessarily be available on all devices right away.

“Fragmentation is the enemy of security,” Johnson says.

And:

Last year, Wired magazine reported that one security firm was offering up to $1.5 million for the most serious iOS exploits and up to $200,000 for an Android one, a sign that iOS vulnerabilities are rarer.

Add to that Apple’s underlying review process, designed to restrict the use of private APIs, controlling techniques that could end-around Apple’s security processes. Not perfect, but world’s better than the more wild-west Android ecosystem.

Android creator Andy Rubin makes new smartphone

Written by

The Essential Phone, brought to us by the person who created Android, is finally ready for the spotlight. It’s an incredibly audacious and ambitious project, with an outlandish screen and the beginnings of a modular ecosystem.

Rubin has been trying to one-up Apple for years but could never quite pull it off. We’ll see how this works out, but I suspect once Apple outlines its next iOS and iPhone hardware later this year, interest in Rubin’s “Essential Phone” will wane.

8,400 new Android malware apps found every day

Written by

The Android operating system clearly dominates the mobile market, with a share of around 72 percent. In Germany alone, around 67 percent of smartphone owners use a device with an Android operating system (source: Statcounter). G DATA security experts discovered over 750,000 new Android malware apps in the first quarter of 2017. That represents almost 8,400 new malware instances every day.

This is an absolutely staggering number. I don’t know how anyone using an Android device feels the least bit safe.

A comprehensive security solution is becoming more and more important for smartphones and tablets.

Yes, I agree. It’s called an iPhone and iOS.

Google reports a big gain in Android Nougat adoption, um…

Written by

Android Police:

Google has updated the developer dashboard for May, giving us an overview of the Android device ecosystem. Nougat continues to inch upward at a respectable rate—it’s now over 7% of devices.

True, that is significant growth for Nougat, absolutely, but compare to iOS 10 adoption, which last reported (back in February) at 79%.

Apple Music for Android updated

Written by

Like the iOS version, Apple Music for Android features a bolder, cleaner look with reorganized sections: “Library,” “For You,” “Browse,” and “Radio.” Also included are iOS 10 features like song lyrics and a revamped For You recommendation section, plus with the redesign, there’s more of a focus on album art.

I could say something sarcastic like “I wonder if Android gets the iTunes Match feature that doesn’t work, or is that an iOS-only feature.”

But I won’t.

Verizon announces plans to install spyware on all its Android phones

Written by

Within days of Congress repealing online privacy protections, Verizon has announced new plans to install software on customers’ devices to track what apps customers have downloaded. With this spyware, Verizon will be able to sell ads to you across the Internet based on things like which bank you use and whether you’ve downloaded a fertility app.

Sigh.

iOS gets 2nd rev of Super Mario Run while Android finally gets their 1st

Written by

Chance Miller, 9to5Mac:

Following its release on Android today, Nintendo has also updated Super Mario Run on iOS. The update adds a host of new features and bug fixes and brings the app to version 2.0. The update comes months after the app’s initial release.

Headlining the update are new playable characters. Nintendo says the update adds different color versions of Yoshi. If you play with a certain color of Yoshi during Toad Rally, you can unlock more toads of that color.

Additionally, the update makes more of the game available for free. Nintendo says that by completing one of Bowser’s challenges, you can unlock the previously locked courses 1-4 and battle with Bowser. Furthermore, Nintendo says that if you “clear course 1-4,” you’ll get new courses to play in Toad Rally.

If you love the game, there’s just more to love. Me, I find the interface a bit of a mess. Lots to love, lots of frustrating design to go along with it.

On a side note, Android users finally got their first taste of Mario yesterday afternoon:

https://twitter.com/NintendoAmerica/status/844663256614649858

The initial release, back on December 15th, 2016, was an iOS exclusive. I suspect this refresh was to revive the wave, give Android folks a reason to buy.