Stagefright was one of the biggest and most worrying security vulnerabilities to be discovered in Android for quite some time. Affecting the mediaserver component, Stagefright allowed for the remote bricking of devices with nothing more than a message. Now a new, yet-to-be-named vulnerability has been discovered in the same component, specifically the AudioEffect element.

Known as CVE-2015-3842, the vulnerability allows a hacker to run their own code on a phone using whatever permission they want. Security researchers at TrendMicro discovered the vulnerability and explain that it can be implemented by simply tricking users into installing a specially-designed app that has no permission requirements and is therefore unlikely to raise suspicions.

Continue reading →

Uber intends to quadruple its security staff by the end of 2015, from 25 to 100 full-time staff members. This investment comes a few months after hiring ex-Facebook chief security officer Joe Sullivan to work as security chief for the mobile cab firm.

The security staff will make back-end data even more secure, while also protecting customers and drivers on the road. Uber is also working on security for staff in volatile countries like China, India and France.

Continue reading →

We all know that using public wireless hotspots can be risky, but is seems that some places are more of a threat than others.

Mobile threat defense company Skycure has put together a study into the most dangerous tourist destinations to use your mobile device, the type of threats you might encounter, and offers some tips on how to avoid falling victim to an attack.

Continue reading →

I’ve read some interesting guestimates on the number of Windows 10 downloads lately. One blog plucks a figure out of the air -- "50 million sound fair to you?" -- another blog inflates the number -- "Let’s go with 53 million!" -- and then a whole bunch of other blogs and sites that should know better run with these numbers as if they are real.

The only way we’ll actually know how many Windows 10 downloads there have been to date is if Microsoft releases numbers (and even then, they probably need to be taken with a slight pinch of salt), but we can get a rough, and reasonably accurate idea of Windows 10’s usage share and, from there, the number of downloads to date.

Continue reading →

Easy Watermark Studio Lite is a well-designed Windows application for applying text and image watermarks to your digital pictures.

Point the program at your source images and it’s ready to go. Well, probably -- the Lite version only imports JPGs, BMPs and TIFFs, and it’ll process a maximum of 30 images in one batch -- but if the restrictions aren’t an issue then it works very well.

Continue reading →

Android One is slowly but surely making its way to major emerging markets across the globe. The latest expansion sees the program being introduced today in Africa. For the moment there is only one Android One smartphone available to local consumers, which retails for roughly $87.

There is huge growth potential for Google and Android One in Africa, as Internet use remains relatively low on the continent. A study by Internet Society estimates that, by the end of 2015, 23 percent of mobile phones will be able to have Internet access, a figure which is extremely low when compared to Asia, Europe or North America. So it is very important for Google to get Android One right in Africa.

Continue reading →

It looks like the first photo of the next Google Nexus phone leaked online, and it shows some interesting details.

According to the Irish Examiner, which says the photo was "posted online", the Nexus 5 phone is on course for a refresh.

Continue reading →

Phishing is a popular route for cyber criminals to gain a foothold in organizations as the weakest link in security is usually the person sitting at the keyboard.

To help combat this Wombat Security is adding a new PhishAlarm to its security awareness and training platform. PhishAlarm is a plug-in for Microsoft Outlook that enables end users to report suspected phishing emails to security and incident response teams with a single mouse click.

Continue reading →

When looking for a new phone, people place importance on numerous things -- different strokes for different folks, and all that. Two things that are frequent bones of contention are the absence of a microSD slot, and a battery that cannot be replaced by the user. It used to be the case that every phone out there (well, let's ignore the iPhone for now) had a battery that you could easily be replaced if needed. Or perhaps you wanted a spare battery so you could use your phone for longer.

But recently there has been a worrying move towards delivering phones that are sealed units -- if your battery gives out on you, you have no option but to send it back to the manufacturer for a replacement. This takes time and money, but the problem of batteries that can't be replaced by users runs deeper than this. Just look at the image above.

Continue reading →

When it comes to DVRs there are many choices. Most come from cable and satellite service providers. While these have improved over time, like Dish Hopper and DirecTV Genie, they aren't perfect, although they are getting more usable.

Now TiVo is readying it's own new device. The company produces what some feel is the best DVR you can get. The latest version is called Bolt and it's just cleared the FCC.

Continue reading →

VMware vSphere is the world’s leading virtualization platform, estimated to run on more than six million physical servers in businesses. But enterprises looking to implement private clouds often turn to OpenStack and up till now this has had limited support for vSphere.

Cloud specialist Platform9 has an answer with the general availability of Platform9 Managed OpenStack for VMware vSphere environments. This is a SaaS solution that transforms an organization's existing servers into an AWS-like agile, self-service private cloud.

Continue reading →

Despite its name, AMC (Advanced Mobile Care) Security 5.0 doesn’t just keep your Android phone safe from malware and other threats. The recently updated app can also clean up junk, boost your device by killing unnecessary tasks, extend its battery life, block calls and SMS messages, and uninstall unwanted apps.

The security side of things is of course the app’s main focus and this includes an antivirus scanner, surfing guard, and anti-theft. There’s also a security guard which lets you toggle settings like Bluetooth, and GPS on or off.

Continue reading →

If you're wary about going the whole hog and installing Windows 10 as your main operating system, you might consider going down the dual boot route, or installing Windows 10 in a virtual machine. Virtualization is a neat option and Microsoft has released a trio of readymade virtual machines that let you test out Windows 10 with Microsoft Edge.

The downloads are provided with web developers in mind -- they're meant to be used to test how websites function under different versions of Microsoft's web browser and these latest releases see the dropping of the beta tag from Edge. But these downloads are not going to just be of interest to developers as they give anyone the chance to try out Windows 10 in a safe environment.

Continue reading →

Two zero-day vulnerabilities in Apple’s OS X, that have been discovered  by an Italian teenager, could potentially be used to gain remote access to a computer.

Luca Todesco, 18, found that there are two bugs in the OS that can be used to corrupt the memory in the OS X’s kernel. Once the memory is corrupt, the attacker can then circumvent the kernel address space layout randomization (kASLR), which is a defensive technique of the OS to protect itself from giving the attacker the root shell. But once the attacker circumvents through the kASLR, they can gain a root shell.

Continue reading →

Popular malware investigator PeStudio has been updated to version 8.51 with extended VirusTotal support.

Drag and drop an executable onto the new build, and after checking the file with VirusTotal to see if it’s a known threat, a new Network Watchdog will update the VirusTotal score automatically.

Continue reading →