biometric authentication Archives

AppWizard

August 22, 2025

7 Open Source Android Apps Every User NEEDS

Open source Android applications prioritize transparency, privacy, and functionality, distinguishing themselves from mainstream apps by offering user control, lightweight performance, and an ad-free experience. Seven essential open source apps are highlighted: 1. Permission Summary: Provides a categorized overview of app permissions, focusing on third-party applications, and operates offline to enhance privacy. 2. Lock Lock: An app locker with anti-uninstall and brute force protection, functioning offline to secure sensitive data. 3. AppLock: Combines biometric authentication and PIN protection with real-time background protection for locked apps. 4. Orientation Lock: Allows users to lock their screen orientation to a preferred mode, featuring a minimalist design and ad-free interface. 5. Yet Another Habit Tracker: Aids users in building habits with features like heat maps and customizable colors to maintain motivation. 6. Create: An offline music player that supports playlist management and customizable themes, focusing on user privacy. 7. Record Equalizer: Offers real-time audio processing tools for recording and sound manipulation, suitable for both casual users and professionals. These applications provide efficient alternatives to traditional apps while enhancing user privacy and control.

AppWizard

August 21, 2025

Google is expanding a key anti-theft feature to make your apps more secure

Android's Identity Check feature will be enhanced in the Android 16 QPR2 update, requiring biometric-only authentication for apps using the biometric prompt, eliminating screen lock credentials as a fallback. This aims to improve security for sensitive applications by preventing unauthorized access, particularly in untrusted environments. The update expands Identity Check to more applications, ensuring that access necessitates biometric verification. Users can activate this feature through Settings on their Pixel devices. Future updates may allow the use of a smartwatch as a trusted unlock mechanism, bypassing biometric authentication when connected.

Winsage

August 8, 2025

Warning: Windows Hello Security Bypassed Using Other People’s Faces

A vulnerability in the Windows Hello facial recognition sign-in system was demonstrated at the Black Hat hacking conference by Dr. Baptiste David and Tillmann Osswald from ERNW Research. They showed that an individual with local admin credentials could bypass the security mechanism by injecting biometric information, allowing the system to recognize any face or fingerprint. This issue stems from the architecture of Windows Hello, which uses a cryptographic key stored in a database linked to the Windows Biometric Service. Although Microsoft's Enhanced Sign-in Security feature could help mitigate such attacks, it is often disabled due to hardware requirements. Researchers suggest that fixing the vulnerability would require significant code changes by Microsoft and recommend users disable biometric authentication in favor of a traditional PIN for better security.

Winsage

August 8, 2025

German researchers show ‘Windows Hell No’ flaw at Black Hat

Microsoft is working to move Windows users away from traditional passwords to its Hello biometrics system. Researchers from ERNW Research, supported by the German government, discovered a critical vulnerability in Hello that allows individuals with local admin access or malware credentials to inject biometric data, bypassing security measures. Hello facilitates authentication for business users by connecting corporate PCs to platforms like Entra ID or Active Directory, storing a cryptographic key in a database linked to Microsoft's Windows Biometric Service. While Enhanced Sign-in Security (ESS) is designed to mitigate such vulnerabilities, not all PCs are compatible with it. During a presentation, researchers demonstrated the flaw by logging in with a facial scan and then injecting a captured facial scan to unlock the device. They suggested that users without ESS disable biometric authentication and revert to using a PIN. Microsoft has not yet responded to these findings, which are part of a research program called Windows Dissect.

AppWizard

July 31, 2025

Android users to finally get an extra layer of security on Chrome

Google Chrome on Android will soon require biometric verification to autofill passwords, enhancing security by preventing autofill without user authentication. This feature will be available in Google Password Manager and is expected to roll out more widely soon. Currently, Chrome has an option for biometric authentication in its Autofill settings, but this has only applied within apps. The update will extend this requirement to all apps, including Chrome, and will be labeled "Verify it's you" in the settings. Users will need to authenticate their identity through fingerprint, facial recognition, or screen lock before passwords can be autofilled. While an official release date is not yet announced, the feature has started appearing for some users, indicating a potential imminent rollout.

Winsage

July 28, 2025

Windows 10 is turning 10: Here are top 10 features and changes it introduced

Windows 10, approaching its tenth anniversary on July 29, has played a significant role in Microsoft's history as mainstream support nears its end. Key achievements include: 1. The Windows Insider Program, launched in late 2014, allowed over 1 million users to provide feedback on Windows development. 2. Windows 10 was the first version that allowed free upgrades from Windows 7 and 8.1, resulting in over 350 million devices upgraded in the first year. 3. It introduced the concept of "Windows as a Service," with bi-annual feature updates. 4. The activation process was improved by linking licenses to Microsoft accounts, allowing users to retain licenses after hardware changes. 5. The Windows Subsystem for Linux (WSL) was introduced in 2017, enabling users to run Linux applications directly within Windows. 6. Windows Hello provided a modern biometric authentication method, supporting facial recognition and fingerprint scanners. 7. The Start menu was redesigned to combine elements from Windows 7 and 8, receiving positive feedback. 8. The Xbox Play Anywhere program allowed users to purchase games once and play them on both PC and Xbox, syncing progress across platforms. 9. Microsoft Defender was included as a built-in antivirus solution, offering robust protection. 10. A proper dark mode was introduced, enhancing user experience, especially for those working late or using OLED displays.

Winsage

June 26, 2025

The Great Migration Starts Here

Organizations must transition to Windows 11 Pro by October 14, 2025, as Windows 10 will no longer receive security updates, increasing vulnerability to cyber threats. The upgrade is complimentary for eligible Windows 10 devices, but compatible hardware is necessary to utilize enhanced security and performance features. Windows 11 Pro PCs include built-in security tools like Windows Hello, BitLocker encryption, and TPM 2.0. Windows AI PCs feature intelligent tools like Windows Copilot for improved efficiency, while Copilot+ PCs, launching in mid-2024, will have dedicated AI processors for advanced capabilities. Security features such as Secure Boot, Virtualization-Based Security, and BitLocker encryption are integral to Windows 11 Pro devices, mitigating risks of malware and unauthorized access. Upgrading to Windows 11 Pro enhances device stability and aligns with sustainability goals through energy-efficient designs.

AppWizard

June 10, 2025

New features coming to Android Enterprise

A modern, AI-driven workplace is reshaping mobility, requiring a shift beyond remote access. Employees now use innovative tools for enhanced productivity and collaboration, but over half of organizations view smartphones as their most vulnerable endpoint. Data breaches are often linked to improper mobile access (54% of incidents) and insecure public Wi-Fi (40% of compromises). To stay competitive, businesses must prioritize secure, tailored employee experiences. Android is adapting to meet organizational needs with enterprise-grade security features, including: - Advanced Protection: Provides robust mobile device protection against online threats. - Identity Check: Requires biometric authentication for device access outside trusted locations. - Corporate badges in Google Wallet: Allows secure access to workplace buildings via NFC. - APN Overrides via AMAPI: Ensures secure network access by controlling cellular data usage on managed devices.

Winsage

May 15, 2025

Microsoft Copilot+ Recall: who should disable it, and how

Microsoft's Recall feature for Copilot+ PCs was initially announced a year ago but delayed due to privacy concerns raised by cybersecurity experts. The updated version was released in April 2025 for Windows Insider Preview builds and rolled out more broadly in May. Key updates include requiring user permission for activation, encrypting database files with hardware-based Trusted Platform Module (TPM), and implementing a filter to prevent saving sensitive information. Recall is enabled on a per-user basis, can be uninstalled, does not require a Microsoft account, and processes data locally. However, it still has vulnerabilities, such as allowing access with a regular Windows PIN after initial biometric authentication and failing to consistently filter sensitive data. Recall can log interactions during calls and capture self-destructing messages, posing privacy risks. It can impact performance and battery life, especially during gaming. Users handling sensitive data or frequently using video conferencing may want to disable or remove Recall. Instructions for disabling or removing Recall are provided, along with precautions for those who choose to use it.

AppWizard

May 13, 2025

Google announces new security features for Android for protection against scam and theft

Google unveiled new security and privacy features for its Android platform, focusing on safeguarding calls, screen sharing, messages, device access, and system-level permissions. Key measures include blocking unsafe actions during calls with unknown contacts, restrictions on side-loading apps from unverified sources, and limiting accessibility permissions to prevent scams. Users on Android 6 or later will not be able to disable Google Play Protect, which scans for harmful applications. Enhanced screen-sharing protection includes reminders to stop sharing after calls and a warning screen for banking apps when sharing with unknown numbers. Google Messages will improve scam detection using on-device AI for various fraud types. Verification keys in the Google Contacts app will allow users to authenticate contacts, with end-to-end encryption for verified conversations. Identity Check protection requiring biometric authentication will be extended to more devices, and stricter controls on Factory Reset functions will be implemented. Google is also enhancing its Play Protect program to detect unsafe apps and strengthening Advanced Protection Mode for public figures, along with introducing a new Find My Hub feature.