Huh, the Windows XP source code allegedly leaks and all security experts are concerned. Imagine if the same happened to the Linux source code… oh, wait!
Seriously, we had a consensus for years, that security by obscurity is a bad idea. So if accidentally going open source is a concern now, then maybe that’s a reminder that Microsoft products have always been dangerous, shouldn’t have been used to begin with and it’s high time to migrate away from the Windows platform (yes, that’s costly and annoying, but don’t tell that having your business shut down because you rely on an unreliable system isn’t).
I’m always stunned when watching a movie/TV show in which a criminal makes a final call, then breaks the phone and throws it away in order to get rid of incriminating evidence. Yeah, sure, burner phones exist to be disposed of, but why break them? Your telco has a record of the phone call and if the police found the wreckage (your telco also knows which radio mast you have been connected to, when making that final call), they could desolder the internal storage from the mainboard - NAND flash chips can be quite resilient. They are also very bad at actually erasing data (when you delete a file, the operating system just marks the storage space as available again. If you truly want to get rid of a file, then you would first have to overwrite it with random garbage. However, writing to NAND flash is slow and wears the chip down - the controller tries to avoid that).
Yeah ok, that’s a problem for criminals, not law abiding citizens. You have nothing to hide - except maybe the credentials for your Google account, online banking…
Something, one should probably keep in mind when selling a used phone: doing a factory reset means all data on the phone is lost — unless the new owner has specialized equipment.
Always amazes me, how much emphasis smartphone reviews put on the camera. Higher resolution means bigger image files. Better image quality means you are more likely to take more pictures. In other words, the better the camera, the sooner you run out of device storage space. Of course, that’s the plan in order to upsell you on cloud storage.
Congratz! Self/Drivel inflicted vendor lock-in.
Just came accross a banking app that is delivered as a split APK. Seriously?! Shit for brains? Slept through cryptography 101?
If your app must communicate over an encrypted channel, then you must NOT use the split APK format. The very fact that Play asks you for your signing (=private) key should ring a bell.
Why do smartphones have fingerprint sensors?
The three golden rules for password management are:
You always “write down” your fingerprints when touching a smooth surface. You can never change them and you (usually) have only 10 of them to begin with. Fingerprints violate all of the above rules, making them completely unfit for being used as password replacements. Smartphone manufacturers know that, but build fingerprint sensors into their devices nonetheless. Why? Because the point is not to actually protect anything on your phone, but to give you the illusion that only you can access it. Otherwise you wouldn’t trust it with your personal data.
Fingerprint sensors are not a security feature. They are simply part of the sales pitch.
Publishing on Google Play requires you to publish a contact email address as well. Publishing a contact address means you get spam mail. The spam you get via the Play contact address is scary.