lockscreen – Tech Today w/ Ken May

Chrome OS version 64 has made its way to stable channel, which means it’s hitting your device very, very soon if it hasn’t yet. It’ll add a handful of new features and improvements, including a screenshot shortcut if you have a Chromebook with a 360-degree hinge like the Acer Spin . You only have to press the power and the volume down buttons at the same time, like what you’d do on an Android phone. It also adds a flag to make Split View easier to activate and gives Android apps the ability to run in the background. In addition, the update improves your lockscreen’s performance, presumably making it faster, and finally enables the use of VPN for apps downloaded from Google Play. While Google is keeping the list of bug fixes under wraps until most people have installed the update, it has revealed that the version includes “additional browser mitigations” to protect your device against the Spectre and Meltdown vulnerabilities. Chrome OS version 64, of course, comes with version 64 of the Chrome browser. That you’re also getting improved pop-up blockers, as well as another feature that can protect you against malicious auto-redirects. Via: 9to5google Source: Chrome releases

Link:
Chrome OS update comes with Spectre fix and new screenshot shortcut

Two-factor authentication ( 2FA ) via SMS and a smartphone provides a heavy dose of additional security for your data, but as the US government declared last year, it’s not without its flaws. To fix that, the big four US mobile operators, Sprint, T-Mobile, Verizon and AT&T have formed a coalition called the Mobile Authentication Taskforce to come up with a new system. Working with app developers and others, they’ll explore the use of SIM card recognition, network-based authentication, geo-location, and other carrier-specific capabilities. The idea is to marry current 2FA with systems that “reduce mobile identity risks by analyzing data and activity patterns on a mobile network to predict, with a high degree of certainty, whether the user is who they say they are, ” according to the news release. The problem with SMS authentication is that skilled hackers have successfully hijacked SMS codes in the past, often simply by contacting the carrier and impersonating the victim. It also falls apart if thieves grab your smartphone along with your PC, gain access to your phone via malware, or just steal a glance at a 2FA message on your lockscreen. Through strong collaboration, the taskforce announced today has the potential to create impactful benefits for US customers by helping to decrease fraud and identity theft, and increase trust in online transactions. The system will be an open one that can work the four carriers and others. “We will be working closely with the taskforce to ensure this solution is aligned and interoperable with solutions deployed by operators, ” said Alex Sinclair, CTO of mobile industry group GSMA. The goal to improve 2FA security sounds like a noble one, but Congress, at the urging of carriers and ISPs, recently eliminated certain customer privacy protection rules. As such, consumer protection groups might have concerns about 2FA systems that could be used by operators to track customers, for example. The new system is supposed to arrive for “enterprises and customers in 2018, ” the group says. In the meantime, if you’re still not using two-factor authentication (SMS or otherwise), you really, really should be . Source: AT&T

See the original article here:
US carriers partner on a better mobile authentication system