Security, Spoken

When you buy an Android smartphone, it’s rarely pure Android. Manufacturers squeeze in their own apps or give it a fresh coat of interface. Carriers do it too. The resulting stew of preinstalled software and vanilla Android sometimes turns out to be rancid, putting flaws and vulnerabilities on the phone before you even take it out of the box. Learn about your ad choices: dovetail.prx.org/ad-choices

Learn about your ad choices: dovetail.prx.org/ad-choices

In 2016 Brendan Eich, the controversial creator of the JavaScript programming language and cofounder and former CTO of Mozilla, announced the launch of a new browser called Brave. The pitch was simple but ambitious: Brave would block invasive ads and tracking scripts, but it would also show its own, privacy-friendly ads in their place. And it would cut both publishers and users in on the proceeds. Nearly four years later, that vision is finally in place. Learn about your ad choices: dovetail.prx.org/ad-choices

Android has a bit of a malware problem. The open ecosystem's flexibility also makes it relatively easy for tainted apps to circulate on third-party app stores or malicious websites. Worse still, malware-ridden apps sneak into the official Play Store with disappointing frequency. After grappling with the issue for a decade, Google is calling in some reinforcements. Learn about your ad choices: dovetail.prx.org/ad-choices

It's not yet prime time for 5G networks, which still face logistical and technical hurdles, but they're increasingly coming online in major cities worldwide. Which is why it's especially worrying that new 5G vulnerabilities are being discovered almost by the dozen. At the Association for Computing Machinery's Conference on Computer and Communications Security in London today researchers are presenting new findings that the 5G specification still has vulnerabilities. Learn about your ad choices: dovetail.prx.org/ad-choices

In charges released Wednesday, the Justice Department accused two former Twitter employees, Ahmad Abouammo and Ali Alzabarah, of abusing their internal system privileges to spy on target users and pass the information they collected to Saudi Arabia. The criminal complaint also alleges that it was trivial for them to do so—a chilling reminder of how much damage an insider can cause. Learn about your ad choices: dovetail.prx.org/ad-choices

Valentine’s Day is a high-pressure event dreaded by millions—precisely the type of holiday you may not want to relive, unless you sell flowers for a living. But that’s exactly what happened to many people across the United States on Thursday, when they awoke to find that their phones had suddenly sent or received text messages originally intended to be sent around February 14. Learn about your ad choices: dovetail.prx.org/ad-choices

Pour one out for the OG Google Pixel 1. This month's Android security patches are out, and while you'll find bulletins covering the Pixel 2, 3, and 4, the original Google Pixel didn't make the cut. Google is ending support this month. ARS TECHNICA This story originally appeared on Ars Technica, a trusted source for technology news, tech policy analysis, reviews, and more. Ars is owned by WIRED's parent company, Condé Nast. Learn about your ad choices: dovetail.prx.org/ad-choices

Scammers are actively exploiting a bug in Firefox that causes the browser to lock up after displaying a message warning that the computer is running a pirated version of Windows that has been hacked. The message, which appears without any any user interaction upon visiting a site, reads: Please stop and do not close the PC … The registry key of your computer is locked. Why did we block your computer? The Windows registry key is illegal. The Windows desktop is using pirated software. Learn about your ad choices: dovetail.prx.org/ad-choices

With hackers deploying sophisticated attacks against operating systems, processors, and even firmware, manufacturers have increasingly turned to a tamper-resistant processor—or part of one—often called a "secure enclave" to stymie all sorts of attacks. They place in that immutable chip the "root of trust" on a device, relying on it to run cryptographic checks every time the system starts to make sure nothing has been subtly, maliciously altered. Learn about your ad choices: dovetail.prx.org/ad-choices