Subscribe to our newsletters
Sign Up

The Hacker News — Cyber Security, Hacking, Technology News

Monday, November 09, 2015 Mohit Kumar

Vulnerabilities are common these days and when we talk about mobile security, this year has been somewhat of a trouble for Android users. Almost every week we come across a new hack affecting Android devices.

One of the serious vulnerabilities is the Stagefright Security Bug, where all it needed to install malicious code on the Android devices was a simple text message.

Although Google patched these security holes in its latest Android update, manufacturers can take a long time to release their own updates, and it's even possible that older devices may not get the updates at all.

So, even after the release of patches for these critical vulnerabilities, it is difficult to say which Android devices are at risk of what bugs.

There is a one-click solution to this problem. One Android app can help educate you and help you know whether your devices is at risk.

One-Click Solution to Check Your Device for All Critical Bugs


Android Vulnerability Test Suite (VTS), developed by mobile security firm NowSecure, is a free vulnerability scanner that scans your Android device for 22 known device vulnerabilities including Stagefright, potentially alerting you to any of the known issues.

This free, open source Android vulnerability scanner tool is "meant to show the end user the attack surface that a given device is susceptible to."
As NowSecure says on the VTS' Google Play listing, "In implementing these checks we attempt to minimize or eliminate both false positives [as well as] false negatives without negatively affecting system stability."
Note: Your Antivirus product may detect this tool malicious in nature because it contains Stagefright detection code.

As VTS vulnerability scanner is an open-source project from a known and trusted developer, users and security researchers can file bugs or other issues on the GitHub repository.

How to Check your Android Device for All 22 Vulnerabilities?


This free Android vulnerability scanner app is available on Google Play Store, and its code is available on GitHub.

Install VTS for Android and hit the Search button when it appears to launch the Device Vulnerability Scanner.

After about 30 seconds, the Android vulnerability scanner will list all vulnerabilities your devices is vulnerable to.

I tested the app on my fully-patched OnePlus Two smartphone earlier this week and found my device is vulnerable to a few vulnerabilities, including the new variant of the Stagefright bug, Stagefright 2.0.

Go and Check your device immediately.

Wednesday, April 29, 2015 Swati Khandelwal

best-android-security-privacy-apps
Just to have a good anti-virus protection app in your smartphone doesn’t mean a complete Security.

As Mobile Device Security is comprised of security of different features, such as:
  • Data privacy and security features
  • Permission restrictions for snoopy apps
  • A blacklist for undesired calls
  • An excellent backup capability, in case your smartphone gets deteriorated.
  • As well as encryption functionality.
Google’s Android is a very flexible mobile operating system that can fulfill all these mobile device security challenges if you select the right security applications from Google Play Store.

No doubt, Google Play Store has an abundance of suitable options, and it’s quite difficult for you to select the ones that meet all your expectations.

So, I decided to help you by making a short list of the best mobile device security applications that I always carry in my Android smartphone.

Here are the best security apps you must have in your Android smartphone; have a look:

TextSecure Private Messenger (Free)

TextSecure-Private-Messenger
There are vast number of secure messaging apps available in Play Store, but the trouble part is that most of them work only if both the parties use the same application for encryption to work.

TextSecure breaks that barrier and works with standard SMS text messages as well, which means you can add an extra layer of security to regular texting even if the client you are messaging is not using TextSecure.

TextSecure Private Messenger is a free secure text messaging app developed by Open Whisper Systems. It is completely open-source and supports end-to-end encryption for secure text messages, means nothing is stored on its server.

Your private conversations will be even safer if both parties are chatting directly through the TextSecure app, but the ability to encrypt your standard SMS messages makes it different from other secure messaging apps.

Download & Install TextSecure Private Messenger.

RedPhone: Private Calls (Free)

redphone-private-secret-calls
RedPhone is a free secure call app that provides end-to-end encryption for your private calls, securing your phone conversations in a way that nobody can listen in.

The purpose for which I use the Red Phone app is that it’s very easy to use. Red phone uses your standard phone number to make and receive phone calls, so there is no need for any other identifier.

The Red phone app, created by Open Whisper Systems, is completely open source and free to download from Google Play Store.

Crypt4All Lite (AES) - (Free File Encryption Software)

Crypt4All-AES-file-encryption-software
Crypt4All Lite (AES) is the popular app for mobile device encryption that is being used to encrypt and decrypt files with 256 bit AES algorithm (AES Crypt version 2).

It has been developed by codewell4 keeping data privacy and security in mind. You can install Crypt4All Lite (AES) for free from Google Play Store.

This mobile device encryption app is being used to encrypt your sensitive files before moving them to online cloud services and store the encrypted files on your Android smartphones.

Nobody except you can access and read those files that have been protected by a Unicode as your password, until or unless you don’t share your password with the second person.

Orbot: Proxy with Tor (Free Privacy and Online Anonymity)

Orbot-Tor-anonymity-software
Orbot is a mobile phone app that allows users to access the Internet, email and instant messaging without being threatened to be monitored or blocked. Orbot brings the functionality and features of Tor directly to the Android OS.

Tor is a free, open source software project that helps you defend against network surveillance. Orbot is a tool used to protect online privacy by using Tor to encrypt your Internet traffic and pass your traffic through a series of computers around the world, maintaining your anonymity.

Orbot is developed by the team of privacy lover people, The Tor Project, so you can safely use it for data protection and confidentiality.

You can Download Orbot app for Free from Google Play Store.

AppLock (Free Application Lock Utility)

AppLock
AppLock is used to protect your personal data to be accessed by anyone. You can put lock to your SMS, Contacts, Gallery, Gmail, Settings, Facebook, Calls and any other app you want to keep away from outsiders.

Do not confuse AppLock with your phone in-built lock feature, as the in-built feature of your smartphone only allows you to put lock on your phone, but not on the selected apps you want.

With AppLock, you don’t need to worry about a friend borrow your phone to play games again or they get your smartphone to have a look. Your private data in certain apps is secured by the app, protecting your privacy.

You can Download AppLock for Free from Google Play Store.

App Ops (Free App Permission Manager)

App-Ops-Android-Permission-manager
App Ops is an Android app that allows you to block permissions to individual apps. This is a great app that allow me to block unnecessary app permissions of certain apps that do not have anything to do with the main function of the apps.

Generally, Android OS is built with an in-built app permission system and when you install any app from Play Store you are asked to grant the permissions that the app requests. If you decline to agree, the app is not installed. It’s an all or nothing situation.

App Ops solves this issue and allows you to change the app permissions. So if, for example, you don’t want your flashlight app to collect your location-based data, which is being used by ad agencies, then you can revoke that permission for that particular app.

App Ops is available for free in Google Play Store and supports Android 5.0.

However, App Ops is still accessible on Android 4.3, 4.4.0 or 4.4.1 if your device is rooted. If you have upgraded your Smartphone to Android 4.4.2 then you need to first launch a root authentication and then reboot your device.

LastPass Password Manager Premium (Free)

LastPass Password Manager Premium
Unless you are a human supercomputer, remembering password is a tough job nowadays when we have numerous online accounts on different websites and have a different password for each site.

But luckily to make the whole process very easy, there is a growing market of best password manager out there which offers you to manage different and unique passwords for your different online accounts with extra layers of security.

LastPass is one of the effective password manager apps for Android that has made life easier for Millions of people worldwide.

With the help of LastPass, you can store your logins, create online shopping profiles, generate strong passwords storage, keep track of personal information, and many more. You can securely and easily access your personal data from every computer and mobile device.

LastPass stores your sensitive data all in one place, protected at LastPass account and encrypted by a secret master password. So, you just have to remember one LastPass password.

You can Download LastPass for Free from Google Play Store.

K-9 Mail (Free Secure Email Encryption Software)

open-source-email-encryption-software
Emails contains the most sensitive data as it’s related to both our personal as well as professional life. K-9 Mail meets your expectations by providing you a secure email encryption service.

K-9 Mail is a free and open source email encryption software for Android that allows you to securely send and receive email from one or more email accounts when used with Android Privacy Guard (APG) to encrypt the contents.

K-9 Mail is based on the original Android mail client by Google and is distributed under the open source Apache license, although it has a whole pile of additional features.

K-9 Mail supports IMAP IDLE for push messaging.

You can Download K-9 Mail for Free from Google Play Store. If you wish to download installable packages of more recent builds, you can head on to the K-9 download page.

Monday, January 09, 2012 Mohit Kumar


Why shouldn't you protect your Android phone? Why to use an Antivirus for your Android? So that users can protect their devices from trojans, viruses, spyware, and other types of malware. Most people carry a lot of sensitive data on their phones. Recently an SMS Trojan horse posing as a media player began infecting Android phones on Russian networks. Once the victim installed the malicious app, it began sending text messages to premium numbers, leaving the user with a huge phone bill.

Also Security researchers from Kaspersky Labs have intercepted a scareware variant targeting Android users, distributed as an Opera Virus Scanner. If the user clicks on the link, they’ll be asked to download VirusScanner.apk, which is currently detected as Trojan-SMS.AndroidOS.Scavir. If the user is using a non-Android device, they’ll be asked to download VirusScanner.jar currently detected as Trojan-SMS.J2ME.Agent.ij.


With this in mind we at The Hacker News have list down the top 5 antivirus apps for Android phones:

1.) Lookout Security & Antivirus: Lookout Security & Antivirus is arguably the most popular security and anti-virus for Android around. A free account lets you scan your phone for malware, back up and restore your data online, and use GPS to locate your phone should it ever get lost or stolen. [Get This]
2.) Avast Free Mobile Security: Avast Free Mobile Security supports a number of features that are usually available only in paid-for Android security software. These include privacy reports, call and SMS filtering, SIM-card change notifications, firewall and application management. [Get This]
3.) Kaspersky Mobile Security: Kaspersky Lab released a free security application to keep your contacts, email and banking information from falling into the wrong hands. Kaspersky Mobile Security Lite can also remotely delete all personal data from the device including contacts, addresses, calendars, text messages and email preventing sensitive information from being illegally used or stolen. [Get This]
4.) Norton Mobile Security Beta: Norton lends its anti-malware, anti virus, and security expertise to mobile. Smartphones hold a lot of valuable data: Text messages, e-mail, and even credit card numbers can reside on the device, where they're easily accessed. [Get This]
5.) AVG AntiVirus: This app originated from Windows and the PC. For Android users it comes the free app and a premium PRO versions. Users need to start the first scan manually, showing red warning indicators until you run it. AVG also has a task killer, a battery optimizer real time protection from unsafe websites as well as antitheft and phone location services. [Get This]

Perhaps it’s the 90’s and 80’s mindset that has us still thinking that cell phones are dumb single purpose devices, that causes us to not care about the security of our mobile devices.A wake up call to just how vulnerable cell phones are was recently raised when Google had to remove about 21 malicious apps from the market that were found to be nabbing user’s data. Go ! Get one Best Security Product for your Android from above list, If you really love your Phone ;-) 


Let us know what you think, learn, and hope for! Connect With us on Google+ , Twitter and Facebook

Newsletter Subscription

Subscribe to our newsletter and get all latest hacking news, free eBooks delivered to your inbox.

Join Over 450,000 Subscribers!