Quick Bytes News – Autumnal Snippets

Here we go again with the Autumn release…

Back to school and an oncoming Christmas, but with Halloween & Guy Fawkes double spook shows in the way. I may try celebrating the Equinox this year for a change on some hilltop if the weather permits, (well, got to try it once!).

Talking of spook shows I see that GCC (our local retrograde County Cabal) are continuing with their mass burn monster incinerator at Quedgeley, where peaceful protestors are arrested for trying to keep our air breathable and our poll tax charges lower.

Caring is carrying a high price these days.

To attempt a brightening up the scenery now, I offer you this;


Android Mobiles Security

 

In today’s world most of us carry a smart phone or tablet, the majority of which are based on Google’s own Android operating system. Many of us began using these for web based functions like browsing and email. Then also along came thousands of Apps and games which often are free which according to their creators ‘enhance the online experience’ for us when using smart devices.

If  that is all there is too it then this post ends now, which it doesn’t.

With an historic headline like this …

“Android Was 2016’s Most Vulnerable Product”

Android needed a big review. >source<

 


So some clever and well intentioned people decided to run tests on how safe it might be to do your online banking or other sensitive personal data transfers from an Android smart device and they were concerned. Its so easy to say ‘yes’ to download an App and then grant it access to all centres of your device when it asks for permission. But what have you done?

Firstly the App may not behave as it appears to offer, remember ‘free’ has its price so beneficiaries will exist somewhere to it being on your device.

Did it come from Googles own Play Store? If not how sure of it can you be when it hasn’t been independently verified by them? Even then caution is advised. Do you really need the App anyway?

If you do need it and would like it tested before installing it you could upload it here for AV-C online analysis

Its creators, AV Comparatives have written of it as follows;

…. “malware analysis tool, which is available free to all users. It is a static analysis system for detecting suspected Android malware and adware and providing statistics about it. Users can upload APK files and see the results in various analysis mechanisms”…

AV – C’s regular bulletins are a very useful and detailed source of their testing of security and privacy vendors products, for example this came from their Aug 2017 report on Mobile Security.

a pic

In their own words ….

“The review mainly focuses on the security features – anti-malware, anti-theft, and privacy – and only mentions further functionalities briefly. The structure of each product report is identical, allowing readers to compare products easily.
The main purpose of a mobile security product is to protect users and their devices from potential harm inflicted by malicious apps, fraudulent mails, or phishing URLs.”


Google Play Protect

Is a new set of protective features that Google have bundled into their ‘Play Services’ feature as of July 2017, so its a good idea to check that it is running on your Android phone. From an article …

“Google Play Protect combines various Android security tools, like app scanning, previously known as Verify Apps, browser protection and an anti-theft feature in the form of Google’s Find My Device app.

Google Play Protect was first launched at the company’s I/O Conference in May and will roll out to all Android devices running Google Play Services 11 or higher” source

One thing though …
“Smartphones often contain a lot of personal data. Luckily Google continuously adds new security to Android. Unfortunately, only 7 percent run the latest Android version (Nougat)”

Manufacturers of smart devices are notorious for delaying for long periods the fixes to security that Android has proved needed to lock them down against malicious code on the web.


“Project Treble”

This may be fixed with Google’s “Project Treble” sometime ahead soonish says this article from Slashgear. So better times ahead but what about now?

If your manufacturer hasn’t got around to updating your phone to ‘Nougat’ yet your best off following the best practice principles of;

  • Remove all junk and unnecessary Apps on the device
  • Install a quality Anti Virus/Malware App (see above) and check it occasionally to be fully functioning
  • Don’t click on links sent to you in texts, Apps and emails that you don’t feel right about, listen to your instincts first.
  • Beware of using unsecured (no password or WEP encrypted) WiFi connections in public places especially for anything sensitive, they are not safe! Best to always do your important stuff at a trusted location like home or office if you can.

 

You might be wondering if having an Android at all is a good idea? I think my answer would be that it will be once new developments above are in place throughout the manufacturer supply chain.

If waiting for that seems like a worrying idea then an iPhone iPad may well be better for now and there are many available in second use markets if a new one is prohibitively expensive. Though again, always use Apps you download only from the Apple Store.

That is all for now.

 

Greg

Free Time
Have up to 30 minutes FREE consultation time!
Advertisements