The 2 Best Security Keys for Multi-Factor Authentication of 2024 | Reviews by Wirecutter
11 Practical Privacy Tips For Your Android Phone
In an era where our smartphones serve as digital extensions of ourselves, safeguarding our privacy on these devices has become paramount. With Android phones, despite the omnipresent data tracking mechanisms inherent in Google's ecosystem, there are numerous strategies you can employ to mitigate privacy risks effectively. From enabling two-factor authentication to utilizing end-to-end encryption in messaging apps, here are 11 privacy tips for your android phone tailored for your Android device.
A Look at the Privacy Settings on an Android PhoneMany people think that iOS is much safer and more private than Android. If you want to learn more about the differences between Android and iOS security, check out our most current article on the subject. Apple has, in fact, done a lot to help people decide what information they want to collect information share with apps. But in the past few years, Android privacy settings had a lot of changes and improvements to protect users from cyber threats and third-party tracking.
So, let's look at a few important factors that show how many apps the private Android phones are.
App Play AreaGoogle said in February 2022 that Android 12 devices would have their own Privacy Sandbox. The newest version has a lot of great new features, such as advertising ID, which lets Android users decide how much data they want to share with apps.
Code That Is Free to UseIt is built on the Android Open-Source Project (AOSP). These available parts are used by app developers and gadget makers to make their products. Android is open source, which means that third-party coders can find security holes and make devices run faster. But hackers can also easily get into Android phones. In 2022, experts found more than 2.5 million new malware apps for Android.
Updates for SoftwareSoftware changes for Android happen quite often, but they aren't always reliable. For Android One devices, improvements and patches are usually released once a year. Other makers may release security updates less often.
The Google Play StoreGoogle has a store for apps with almost 2.7 million apps. A lot of them, like VPNs, antivirus software, and ad-blocking apps, are good ways to protect customers' privacy and safety. But because the Play Store doesn't check third-party apps as carefully as
Apple's App StoreYou could download a bad app on your phone by chance. Even though Android devices have some privacy and security flaws, they also have a lot of features that can help you keep your personal information more safe and avoid online threats. Let's talk about the best privacy settings for an Android phone.
Enable Two-Factor Authentication: Privacy Tips for Your Android PhoneAdding an extra layer of security to your Google account through two-factor authentication (2FA) significantly bolsters your defenses against unauthorized access to google services. By requiring a one-time code in addition to your password, 2FA helps thwart potential breaches even if your password is compromised.
Set a Strong PasscodeWhile biometric unlocking methods like fingerprints or facial recognition offer convenience, consider opting for a robust alphanumeric passcode, especially if you handle sensitive information. This ensures added security, particularly in scenarios where legalities concerning biometric unlocking of payment information remain ambiguous.
Audit App PermissionsRegularly review and fine-tune app permissions to restrict unnecessary access to your device's hardware and services. Be vigilant against apps that exploit permissions for data harvesting, particularly concerning location tracking, and revoke access for any dubious applications.
Enable Automatic UpdatesKeep your device and apps fortified against emerging security threats by enabling automatic updates. This ensures timely installation of patches and fixes, fortifying your device operating system's defenses without manual intervention.
Enable Find My DeviceSafeguard against the nightmare of a lost or stolen mobile phone by activating the Find My Device feature. Not only does this facilitate locating your device in such scenarios, but it also allows for remote data wiping to safeguard sensitive information.
Keep Sensitive Notifications off the Lock ScreenShield your private conversations google photos and sensitive information from prying eyes by configuring your device to display notifications only when unlocked. This prevents inadvertent exposure of confidential content in public settings.
Disable Personalized AdsCurtail intrusive ad tracking by disabling personalized ads and resetting your advertising ID. Additionally, consider leveraging tools like DuckDuckGo's App Tracking Protection to thwart cross-app tracking and enhance your privacy further.
Give Your Google Account a Privacy Check-UpTake control of your data by conducting a comprehensive privacy audit of your Google account. Fine-tune settings related to web and app activity, location, search, history, and ad preferences to curtail data collection and retention.
Quickly Block Access to Camera or MicExercise granular control over app permissions by leveraging Android's Quick Settings menu to promptly block access to the camera or microphone. This feature provides peace of mind and enhances privacy in instances where access to these peripherals is unwarranted.
Keep an Eye on Your ClipboardStay vigilant against potential clipboard snooping by enabling alerts for clipboard access. While you may not prevent access outright, being aware of such activities allows you to exercise caution regarding sensitive information stored on your clipboard.
Use End-to-End Encryption in MessagesEmbrace the security afforded by end-to-end encryption in messaging apps, ensuring that your communications remain confidential. Verify that encryption features are enabled in messaging settings or consider utilizing encrypted messaging platforms like Signal or WhatsApp for enhanced privacy.
FAQsQ: How does Android's privacy compare to iOS?
A: While iOS often receives praise for its robust privacy features, Android has made significant strides in improving privacy protections. With features like the Privacy Sandbox and advertising ID controls introduced in Android 12, users have more control over their data. However, it's essential to stay informed about the privacy differences between the two operating systems and choose the one that aligns with your preferences.
Q: Is Android open source?
A: Yes, Android is built on the Android Open-Source Project (AOSP), which means that its source code is freely available for developers to use and modify. While this openness fosters innovation and collaboration, it also introduces potential security vulnerabilities. Regular updates and security patches are crucial to addressing these vulnerabilities and maintaining the integrity of the platform.
Q: How often does Android receive software updates?
A: The frequency of software updates can vary depending on factors such as the device manufacturer and model. Android One devices typically receive regular updates, including security patches, while other devices may have less frequent update schedules. It's essential to stay informed about your device's update schedule and apply updates promptly to mitigate security risks.
Closing PointsIn conclusion, safeguarding your privacy on an Android device necessitates a proactive approach encompassing a range of security measures. By implementing these practical tips and remaining vigilant against emerging threats, you can fortify your digital privacy and enjoy a safer, more secure mobile experience. Remember, while achieving absolute privacy may be elusive, every step taken towards enhancing your privacy posture contributes to a more secure digital environment.
What To Do If You Forget Your Android Phone Password
Updated on 3/8/2024 with current instructions for resetting phones and added instructions for OnePlus and TCL.
If you forget your Android lock screen password, is there a way to unlock your phone? The short answer is no – you will have to factory reset your phone if it's locked to be able to use it again. And because all recent versions of Android encrypt the data on your phone by default, there is no way to recover any photos, contacts, or other data that you haven't backed up to your Google account; they will be gone forever after the reset. However, at least your phone will be unlocked and you'll be able to use it again.
There are two ways to factory reset an Android phone if you've forgotten the password and can't get past the lock screen. The first is to use Google's Find My Device, which allows you to erase your phone online remotely. If you don't have Find My Device turned on (it should be on by default), you'll have to use the second method, Android's "Recovery Mode."
Read more: How to Know if Your Android Phone Is Linked to Another Device
It's critical to note that resetting your phone through either of these methods will require you to know your Google account and password that was used to set up the phone. If you don't have this information, the device will be permanently locked. This security measure is in place to prevent thieves from using your device after factory resetting it.
How to reset your Android phone through Find My DeviceRead more: How to Turn on Emergency SOS on Your Android Phone
How to reset your Android phone through Recovery ModeThe steps to enter Recovery Mode varies by manufacturer, but I'll provide instructions for the major ones below.
How to reset stock Android phones (Google Pixel phones):Google advises you to charge your phone to at least 70% before attempting to reset your locked phone.
Motorola tells you to charge your phone to at least 30% before attempting to reset your locked phone.
Samsung recommends charging your phone to at least 25% before attempting to reset your locked phone.
For Samsung phones with a separate Power button (Galaxy S8, Galaxy S9, Galaxy S10), press and hold the Volume up button, Power button, and Bixby button until your phone vibrates and goes into Recovery mode.
For Samsung phones with a physical Home button (including the Galaxy S6 and Galaxy S7), Press and hold the Volume up, Home, and Power buttons until your phone vibrates, and then release just the Power button.
Note: Samsung reports that for some devices running Android 11 and above, you will need to connect your phone to power via USB to go into recovery mode.
[Image credit: Josh Kirschner/Techlicious, screenshot via Techlicious]
Josh Kirschner is the co-founder of Techlicious and has been covering consumer tech for more than a decade. Josh started his first company while still in college, a consumer electronics retailer focused on students. His writing has been featured in Today.Com, NBC News and Time.
Google Suddenly Reveals Surprise Android Update That Beats IPhone
There's a lot less to choose between Android and iPhone than used to be the case. And while Google seems to do more following than leading, a surprise new update just revealed for Android has beaten Apple at its own game...
Android just dialed security up to 11
gettyUpdated 3/31; originally published 3/29.
Android and iPhone are coming ever closer together, and in recent weeks we have seen previews of iPhone features that Google is lifting for Android, including encrypted WhatsApp calls in phone dialer lists and satellite SOS messaging.
But we have also seen Apple move iPhone in Android's direction, especially with the unexpected news that iPhone may use Gemini and Baidu generative AI instead of Apple's own for the heralded chatbot functionality expected with iOS 18.
MORE FROM FORBESGoogle's New AI Search Goes Horribly Wrong-M Is For MalwareBy Zak DoffmanBut nothing has prepared us for what Google also just revealed in its latest Android 15 developer release. In a surprise move that's more iPhone than iPhone, it looks like Android may be taking privacy to the next level, with new devices able to hide their locations even from their networks.
Even more markedly, Google has also previewed a feature to protect devices from IMSI grabbers and intercept platforms. These are the technologies used by law enforcement and sometimes criminals to capture phone IDs and trick those phones into connecting to a copycat network, allowing calls and messages to be intercepted.
Android has played in this space before—but not like this. As far back as Android 12 and more notably in Android 14, devices were able to cut off low-level cellular capabilities that would drop a phone from encrypted to insecure comms. This makes it much harder to run an intercept, but the features have been buried and hard to find. What we're about to see is this level of privacy hit the mainstream.
The catch is that both these updates require a new interface between the radio modem and the phone's OS, because the IMSI grab and intercept are on the radio side not the OS side. Modems will need to be able to run the software interface, which means new modems. You'll probably need to upgrade your hardware not just update to Android 15. It's likely Google phones will get this first, but others will follow.
Mishaal Rahman discovered the update, explaining that grabbers and intercepts "are popular among law enforcement because they allow for the covert collection of data from criminal suspects, but they have also been used by malicious state actors to spy on journalists… they put individual privacy at risk because there are few safeguards against them. That's why Google has been working on updating Android to prevent devices from sending text or voice data over older or unencrypted protocols."
A device with a modem that supports the new technology layer will present a user warning when a device ID is captured by a network or connected to an insecure network without the expected level of encryption. This means a potential intercept, where the device is knocked off its usual carrier onto a high-powered and less secure local radio network mimicking the cellular carrier. All traffic is then routed through the fake network and either captured as its backhauled to the real network or cut off.
The network location information is different. Most location data we discuss when it comes to phones is device-centric. Your phone uses GPS and other technologies to locate itself. That can be shared with apps or friends, and we have seen multiple privacy updates to restrict apps accessing this capability, especially in secret.
The phone network can also ping your device and request its precise location, and it's this feature that can be cut off unless there's an emergency, for example you're making a 911 call or sending an emergency text message.
As Rahman explains, while Android has already followed iPhone in providing more rigorous restrictions on app access to location data, "the OS can do little to prevent your carrier (cellular network) from getting your location. In Android 15, though, the OS might get a way to prevent your location data from being sent to your carrier."
This won't stop carriers using old school cell tower triangulation. Any phone connecting to as network can be located, as it pings multiple towers simultaneously and the location of those towers and strength of those connections enables a broad location to be derived. This isn't pinpoint in the way we're used to with GPS, but it does allow phones (and their users) to be placed in certain locations at certain times.
MORE FROM FORBESYes, You Can Export Your WhatsApp Chats To Telegram-But Don'tBy Zak DoffmanThis is exciting stuff for Android users. We are now venturing into a new level of privacy and location masking, with some of the continued device vulnerabilities on the radio side being addressed. And while this will be welcomed by privacy advocates, you can bet that law enforcement agencies will be looking at what this means and how such defenses can be worked around as necessary. I would expect the emergency override may be triggered by law enforcement under certain circumstances.
Over to the modem OEMs now to see how quickly this technology makes its way into the radios, so the new Android software can step up its interface and controls.
Apple provides much wider location controls on iPhone than Android, including network search and enhanced emergency call information. But it has not yet raised the profile of those restrictions as we are seeing Android do here. I would expect a more detailed comparison between the two to come out, with the detail behind what a radio network can and cannot do on an iPhone and how the OS and modem interface.
And that's what most interesting here—Google taking a lead in messaging and user transparency on the privacy front, ground that has always been Apple's in the past.
As ever with this level of phone security and privacy, it's good to have even if it won't be a game-changer for the vast majority of users. But for journalists, politicians, celebrities, dissidents and protesters, this is a major advance in the improvement of personal privacy and data security and is as welcome as it is surprising.
MORE FROM FORBESYes, Even Vladimir Putin Just Warned You That Telegram Is DangerousBy Zak Doffman3/31 update: Unsurprisingly, the news that Android 15 is bringing these new privacy advances has sparked interesting online debate. "It's great that Google is taking the hardware/software security link more seriously," one Reddit user posted. "This still does not stop SIM swappers or anyone else from directly targeting you. It just moved the bar for dragnet radio surveillance much higher. Which is always good."
The question on iOS comparisons has also come up. We know that iOS 17 introduced the same type of 2G blocking that Android launched as a more basic precursor to these new technologies. But only in Lockdown Mode. EFF welcomed this as "a huge step towards protecting iOS users from fake base station attacks, which have been used as a vector to install spyware such as Pegasus." But, as the name implies, Lockdown Mode is for specialist users at higher risk, and is not for everyone.
Apple says itself that "Lockdown Mode is an optional, extreme protection that's designed for the very few individuals who, because of who they are or what they do, may be personally targeted by some of the most sophisticated digital threats. Most people will never be targeted by attacks of this nature. When Lockdown Mode is enabled, your device won't function like it usually would. To reduce the attack surface that could potentially be exploited by highly targeted mercenary spyware, certain apps, websites and features will be strictly limited for security, and some experiences may not be available at all."
That's the real news here—Google making this level of security more mainstream, offering warnings when a device detects unusual network activity.
So-called Stingray devices rely on knocking phones down to 2G with its inferior security, but that's not enough anymore. Android's original defenses and the iOS 17 defense protect users against this legacy technique, but newer devices—Hailstorm for example—can operate on 4G networks in a way that wasn't possible before.
5G offers enhanced security in the way IMSI data is handled and transmitted, and so if you are in an area with good 5G connectivity then you are better protected. Albeit that won't stop a strong local radio trying to knock you down to 4G. And it won't protect you in areas without 4G or when your 5G connection is just LTE+.
While praising Android's early efforts and Apple's Lockdown Mode, EFF was very critical of Samsung. "So far Samsung has not taken any steps to include the 2G toggle from vanilla Android, nor has it indicated that it plans to any time soon. Hardware vendors often heavily modify Android before distributing it on their phones, so even though the setting is available in the Android Open Source Project, Samsung has so far chosen not to make it available on their phones... These failures to act suggest that Samsung considers its users' security and privacy to be an afterthought. Those concerned with the security and privacy of their mobile devices should strongly consider using other hardware."
As such and given the need for modem and OS to work together, it will be interesting to see if Samsung gets onboard with these Android 15 changes quickly, unlike what has happened before.
Techniques are not made public for obvious reasons, but looking at rogue network activity and warning users when something is detected is important. It's a major advance on just disabling 2G. When a phone is attacked, there's a process at play. And detecting elements of that unusual activity is the best defense. Clearly, a sensitive user seeing such a warning will immediately shut down the phone.
As for the network location detection, a good debate has ensued as to the accuracy of cell tower triangulation. "As long as you're connecting to their towers they know an approximate location. Regardless of device settings," said one Reddit user. "Having worked in a department that provided cellular location info to authorities, I believe it can be narrowed down to roughly 15-25 meters," posted another.
The rule here is very simple—it depends where you are. In a busy city location with lots of cell towers all around you, location accuracy is pretty good. But head out into a rural setting, with fewer towers and further distances between them, and it will vary wildly. Something to bear in mind...
Comments
Post a Comment