Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label Google Pixel Phones. Show all posts

Mobile Security Alert: CERT-In Flags Risks in Top Brands

The Indian Computer Emergency Response Team (CERT-In) has discovered security flaws in high-profile smartphone brands, including Samsung, Apple, and Google Pixel devices. After carefully analyzing these devices' security features, CERT-In has identified certain possible weaknesses that can jeopardize user privacy and data.

The CERT-In advisory highlights significant concerns for iPhone users, indicating a security flaw that could be exploited by malicious entities. This revelation is particularly alarming given Apple's reputation for robust security measures. The advisory urges users to update their iOS devices promptly, emphasizing the critical role of regular software updates in safeguarding against potential threats.

Samsung and Google Pixel phones are not exempt from security scrutiny, as CERT-In identified vulnerabilities in these Android-based devices as well. The CERT-In advisory underscores the importance of staying vigilant and promptly applying security patches and updates provided by the respective manufacturers. This is a reminder that even leading Android devices are not immune to potential security risks.

The timing of these warnings is crucial, considering the increasing reliance on smartphones for personal and professional activities. Mobile devices have become integral to our daily lives, storing sensitive information and facilitating online transactions. Any compromise in the security of these devices can have far-reaching consequences for users.

As cybersecurity threats continue to evolve, both manufacturers and users need to prioritize security measures. CERT-In's warnings underscore the need for proactive steps in identifying and addressing potential vulnerabilities before they can be exploited by malicious actors.

In response to the CERT-In advisory, Apple and Samsung have assured users that they are actively working to address the identified security flaws. Apple, known for its commitment to user privacy, has pledged swift action to resolve the issues outlined by CERT-In. Samsung, too, has expressed its dedication to ensuring its users' security and promised timely updates to mitigate the identified risks.

Cybercriminals are utilizing techniques that evolve along with technology. Users should prioritize the security of their mobile devices as a timely reminder provided by the CERT-In alerts. When it comes to preserving the integrity and security of smartphones, manufacturers' regular updates and patches are essential. Protecting our personal and business data while navigating the digital landscape requires us to be vigilant and knowledgeable about potential security threats.

Detecting Mobile Hacks: Signs and Solutions

The possibility of getting hacked is a worrying reality in a time when our lives are inextricably linked to our smartphones. Hackers' strategies, which are always looking for ways to take advantage of weaknesses, also evolve along with technology. Thankfully, it is possible to determine whether unauthorized access has been gained to your phone.

1. Unusual Behavior:

If your phone starts exhibiting unusual behavior, such as sudden battery drains, sluggish performance, or unexpected shutdowns, it could be a sign of a breach. According to Tom's Guide, these anomalies may indicate the presence of malware or spyware on your device, compromising its functionality.

2. Data Usage Spikes:

Excessive data usage is another red flag. A sudden spike in data consumption without any change in your usage patterns could signify a compromise. NordVPN emphasizes that certain malware operates in the background, quietly sending your data to unauthorized sources, leading to increased data usage.

3. Strange Pop-ups and Ads:

Pop-ups and ads that appear out of the blue, especially when your phone is idle, may be indicative of a hack. Business Insider notes that these intrusions often result from malicious software attempting to generate revenue for hackers through ad clicks.

4. Unrecognized Apps and Permissions:

TechPP advises users to regularly check for unfamiliar apps on their phones. If you notice apps that you didn't download or don't remember installing, it's a clear sign that your phone's security may have been compromised. Additionally, scrutinize app permissions to ensure they align with the app's functionality.

5. Overheating:

An overheating phone can be a symptom of hacking. Unexplained overheating may indicate that malicious processes are running in the background. If your phone feels unusually hot, it's worth investigating further.

6. Sudden Password Changes:

If you find that your passwords have been changed without your knowledge, it's a serious cause for concern. This could signify a hacker gaining unauthorized access to your accounts. NordVPN emphasizes the importance of immediate action to secure your accounts and change passwords if you suspect foul play.

It's essential to be watchful and proactive to protect your phone from any hackers. Observe the recommendations given by reliable sources regularly. Recall that reducing the effect of a security compromise requires quick identification and action. Our knowledge of and protections against the constant threat of mobile phone hacking should advance along with technology.


Google Pixel’s Face-altering Feature Sparks AI Manipulation Debates


In this smartphone era, photo editing has become a rather common thing for users, from enhancing colours to adjusting light levels.

And now, with the trend of AI, smartphones are joining in as one of the focuses of debate about what it really means to photograph reality. 

Pixel 8 and Pixel 8 Pro 

Google has recently launched their latest smartphones, the Pixel 8 and Pixel 8 Pro which are making a revolution. They are incorporating AI technology to help users alter their expressions in photographs. 

It is not a new thing for people to realize they failed to smile in a group photo, as they turned away from the camera just at the right moment. With the help of machine learning, Google's phones can now search through that image and combine diverse facial expressions to add a smile from another photo of the subject. Google has named this feature ‘Best Take.’

The Google devices can also enable users to erase, move or resize unwanted elements in a photo such as people or buildings, and then use a feature called Magic Editor to "fill in" the empty space. This makes use of a technique called deep learning, which is essentially an artificial intelligence algorithm that determines what textures should fill the gap by analyzing the nearby pixels it can see and utilizing knowledge it has gained from millions of other photographs.

Any image in a user's Google Photos collection, not necessarily only the ones taken by their phone, can be edited using the alleged Magic Editor or Best Take while using the Pixel 8 Pro.

‘Icky and Creepy’

The aforementioned technology is however raising certain doubts among tech critics and reviewers on how users take photographs, calling Google’s new AI technology ‘icky (The Verge)’ and ‘creepy’(Tech Radar). According to Cnet, the technology has the potential to "pose serious threats to people's (already fragile) trust of online content.”

Andrew Pearsall, a professional photographer, and senior lecturer in Journalism at the University of South Wales, has also agreed that AI manipulations may possess dangers. 

"One simple manipulation, even for aesthetic reasons, can lead us down a dark path," he said.

According to Pearsall, the risks were higher for those who are using AI in professional settings, while there were implications for everyone to consider. "You've got to be very careful about 'When do you step over the line? […] It's quite worrying now you can take a picture and remove something instantly on your phone. I think we are moving into this realm of a kind of fake world," he said. 

However, Google's Isaac Reynolds, who leads the team developing the camera systems on the firm's smartphones, emphasized that the company has taken ethical considerations of its customer technology seriously. He clears that Best Take is in fact not ‘faking’ anything. 

The company's ability to compete with Samsung, Apple, and other companies depends on the quality of its cameras and software, and these AI features are considered a differentiator. All of the reviewers who expressed worries about the technology also lauded the camera system's photographs for their high quality.

"You can finally get that shot where everyone's how you want them to look- and that's something you have not been able to do on any smartphone camera, or on any camera, period," Reynolds said. "If there was a version [of the photo you've taken] where that person was smiling, it will show it to you. But if there was no version where they smiled, yeah, you won't see that."

According to Mr. Reynolds, the final image serves as a "representation of a moment". According to Mr. Reynolds, the final image serves as a "representation of a moment". In other words, even though that particular moment may not have actually occurred, it is the picture one wanted to happen, that was created from different real moments.  

Google: Two Major Pixel Vulnerabilities Patched

 

Google has published updates for Android 10, 11, 12, and 12L which include Pixel security patches. The Android Security Bulletin for May offers information about security flaws could affect Android devices. 
 
The Pixel Update Bulletin offers information about security flaws and functional enhancements for concerned Pixel devices. Google Pixel phones are "pure Android" devices. The two bulletins identify significant vulnerabilities as follows : 

  • CVE-2022-20120—Bootloader [Critical] The bootloader has a remote code execution (RCE) flaw. The bootloader on Android is a software program that loads the operating system every time users turn on the phone. It can only load software which has been signed by Google by default. If users unlock the bootloader, though, it will run whatever software you specify. The precise problem hasn't been revealed yet, but based on the scale of access required to exploit it, it may be very serious.
  • CVE-2022-20117— Titan-M[Critical] Titan M has an information disclosure (ID) flaw. Titan M is a security management chip designed specifically for Pixel phones to protect the most sensitive data and os version on the device. Titan M aids the bootloader in ensuring users running the correct Android version. . However, being able to steal data from the portion which is supposed to protect the most sensitive information does not look well. 
  • CVE-2021-35090: Qualcomm[Moderate] Qualcomm chips are the most extensively used in Android smartphones. 9.3 out of 10 for CVSS. Qualcomm has recognized this race condition in Kernel as a Time-of-check Time-of-use (TOC TOU). A potential hypervisor memory corruption owing to a TOC TOU race scenario when changing address mappings was also mentioned. A TOC TOU occurs whenever a resource is tested for a specific value, such as whether or not a file exists, and then the value alters before the asset is utilized, invalidating the check's results. When multiple threads have access to shared data and attempt to update it at the same time, a race condition occurs.
  • CVE-2022-20119 Display/Graphics[High] 
  • CVE-2022-20121 USCCDMService[High] 

The most serious of these issues, according to Google, is a highly secure vulnerability in the Framework component which might lead to local elevation of privilege (EoP) with user execution rights required, although the company does not specify which of the four candidates it is. 

All problems in these bulletins are addressed in security patch versions 2022-05-05 or later for Google and other Android devices. Check and update one Android version to discover how to check a device's security patch level. Experts advise all Android users to update to the most recent version. 

This week, the Pixel 3a and Pixel 3a XL series will acquire its final security updates. When it comes to support, they then reach the End-of-Life (EOL)

Android 11 is here: check out the new features and your phone's compatibility with the new Android

 

Google has been teasing the Android 11 release for quite some time now and it's finally here. The new OS was released on September 8 but will reach India in the upcoming weeks.




The new OS will be available for Indian users in the next few weeks given your phone is compatible, various smartphone makers like Xiaomi, Oppo, Realme, One Plus, Nokia are backing their new models with Android 11. Google Pixel smartphones of course already have as Android 11 was released on the new Pixel phone.

New Features

Android 11 has rolled out with several interesting new features encompassing conversations, privacy and security, accessibility, device control, content capture, and predictive tools. Some of these are- 

Bubbles (Chat while multitasking)

This feature will pin your conversations to the screen and you can converse without leaving the application your working in. 
 "Bubbles keep the conversation going—while you stay focused on whatever else you’re doing. Access the chat anytime or anywhere. Then carry on doing you.", Android.inc released on their blog.

Get all your messages in one peace

Now you can better manage your conversations in one place. You'll get message notifications from multiple message apps at one place from your priority people. 

Content Capture

Android has finally integrated a built-in screen recording feature. Another quirk with the new OS is that it allows you to copy text as well as pictures and move them wherever you want. 

Smart Reply

The Google Keyboard comes with default smart replay, which gives suggestive replies life 'sound good'. "Replies are intelligently suggested based on what’s been said in the conversation—so the words you need and the perfect emoji are always at your fingertips." 

Privacy 

This Android update comes with more privacy to the user- the user can select data and permissions to be granted to the app and only once not the traditional permissions that apps ask for every time you open the app.

Device and Voice Control

Android 11 welcomes better ease of access that is voice control even offline voice command and connected device control like managing house appliances.

There are other security and privacy updates that are aptly needed and provide a better experience compared to the Android 10 version. Various smartphones are compatible with the new update, namely- 
  •  Google Pixel Phones: Pixel 3, 3A, 4, 4A
  •  Oppo phones: Oppo is testing the feature on their Find X2 series and Reno 3 Series (4G).
  •  One Plus: One plus is also testing open Beta of its Oxygen OS 11 update for OnePlus 8 and OnePlus 8 Pro. 
  •  Realme Phones: Realme X50 Pro
  •  Xiaomi phones: They posted on Twitter that their Mi10 and Mi 10 Pro will be the first to have the 11 updates.