Security

Some "smart" home products could become unsupported in just two years according to a consumer group. That could mean premium features stop working and may even create security risks. The details come from "Which?," a British organization very ... similar to Consumer Reports in the US. It explored a big potential problem with smart tech: that the support for such features is often guaranteed for much less time than the expected useful lifespan of the product itself. The group researched smart features, meaning devices were linked to the Internet or a local network and allowing extra ... (view more)

TikTok has been banned from all US federal government devices over security fears. The ban even extends to phones issued to members of the House of Representatives. The government ban was introduced in the "omnibus" spending bill recently passed by ... Congress. It gives federal employees two months to delete the app, along with any others issued by developers ByteDance, from government-issued handsets. Although the bill did not cover politicians, the House of Representatives chief administrative Catherine Szpindor has written to the house's members and staff to say the rules will now apply to ... (view more)

Google's Chrome browser will soon be unsafe to use on Windows 7, 8 or 8.1. Google is about to finally ditch support for the systems, meaning no more updates. Version 109 of Chrome, scheduled for a full public release on January 10th, 2022, will be ... the last available for those editions. Starting with version 110, expected in February, new versions will only be available for Windows 10 and later. (Source: google.com ) Windows 7, 8 and 8.1 users can still run Chrome 109 (or earlier versions) but the browser will become increasingly outdated with no new features or performance fixes. More ... (view more)

Windows 8.1 will no longer receive security updates from next month. It is said to effect millions of users. Microsoft has reminded users that January 10th, 2020 is the "end of support" date for the system. That means it will continue to work, but ... users will no longer get any updates or fixes, whether for security or performance bugs. The deadline also means an end to technical support from Microsoft of any kind. (Source: microsoft.com ) The system has already past the mainstream support deadline in 2018. That's when Microsoft stopped adding any new features. No Pay-To-Secure Option Unlike ... (view more)

Two US government apps have been revealed as using code from a Russian company that falsely claims to be based in the US. It's also claimed one of that company's developers has a history with malware. The initial revelation came from Reuters which ... highlighted "thousands" of smartphone apps included code from a company called Pushwoosh. The apps included one for the Centers for Disease Control and Prevention and another used by the US Army. Both have now removed the code. (Source: reuters.com ) The Pushwoosh code lets apps put together profiles of users and send notifications without ... (view more)

A theory involving donuts has helped crack a proposed government security algorithm. It's nothing to do with distracting security guards, Better Call Saul-style, but rather advanced mathematics. Government agencies and others involved in security ... are constantly looking for new ways to encrypt data, with quantum computing seen as a potentially major threat. Most encryption methods used at the moment rely on length and complexity to deter brute force cracking techniques that simply try every possible decryption key. The idea is that it should take so many tries (on average) to get the right ... (view more)

Intel claims it can spot 96 percent of "deepfake" videos. The trick appears to be tracking blood flow in the face. A deepfake is a more sophisticated version of the comparatively basic task of replacing one person's face with another in a video. ... Common uses include making the person appear to be saying something they never actually said (creating political distrust) or making it look like they performed lewd actions. The "deep" element comes from deep learning, where a computer program tries out and develops different tactics for performing a task better. In this case, the ... (view more)

Microsoft Defender has come in last in two separate tests of Windows 11 security software. It's a surprise result given it generally did well on Windows 10. There's some comfort for Microsoft, however, as the nature of the testing means many users ... won't notice that much difference in practice. That's important given Microsoft Defender (previously Windows Defender) is built-in to Windows 11. The first rankings came from AV-Test, which describes itself as "The Independent IT-Security Institute." It ran a series of tests on 19 products using "realistic test scenarios" and "real-world threats." ( ... (view more)

Android users have been urged to check their phone has the latest security patches. It follows a researcher accidentally uncovering a significant flaw in the screen lock. The researcher discovered the problem on a Google Pixel 6 and replicated it on ... a Pixel 5. The problem appears to affect phones running Android 10 or later that use a SIM card, not just those made by Google. However, some reports suggest it doesn't affect Samsung handsets. The problem is with the personal unblocking key (PUK). That's a way to regain access to a handset that's been locked after forgetting the phone's passcode ... (view more)

"Password" and "123456" continue to battle it out for the worst password choice according to two annual studies. While this tells us very little about why users continue to use such weak passwords, there's some mixed news elsewhere. Several ... companies chase headlines each year by publishing lists of the worst passwords, meaning the ones that appear most frequently. The data source is usually a collection of stolen website login databases published online. Sometimes these are stored in plain text while sometimes cyber criminals have successfully cracked decryption. The ... (view more)