two-factor authentication Archives

Winsage

December 18, 2024

Microsoft Warns Millions Of Windows Users—Your PC Is No Longer Trusted

Millions of Windows users are facing issues with the Phone Link app after the upgrade to Android 15 due to new security measures by Google. The update has led to certain notifications being hidden for user protection, particularly affecting notification mirroring for two-factor authentication (2FA) codes. Microsoft confirmed that Phone Link will no longer display notifications containing sensitive information, impacting apps downloaded from the Play Store, while preinstalled applications remain unaffected. Android 15 designates notifications with 2FA codes as ‘sensitive,’ allowing only trusted Notification Listener services to access them. Google introduced these changes to combat one-time passcode (OTP) fraud and protect sensitive content, which includes redacting OTPs from notifications for untrusted apps and securing app activities when OTPs are displayed.

Winsage

December 17, 2024

Windows can’t mirror sensitive notifications from some devices with One UI 7.0

Google's Android 15 introduces enhanced privacy features that prevent sensitive notifications from being mirrored to linked Windows PCs via Microsoft's Phone Link app. Notifications containing sensitive information, such as two-factor authentication codes and credit card details, will not be shared with third-party applications, including Phone Link. However, users with devices pre-loaded with Phone Link and supporting the Companion Device Role, like Galaxy smartphones on One UI 6.1 or newer, will still receive these notifications. Users can disable the ‘Enhanced Notifications’ setting to bypass this limitation, but doing so will also disable advanced features like reply suggestions.

AppWizard

December 16, 2024

Android 15 users facing notification bug on Windows Phone Link app

Android 15 users are experiencing issues with the Windows Phone Link app after a recent update, which limits the app's ability to display certain notifications. The update automatically hides notifications from untrusted apps to protect sensitive information, restricting third-party applications from accessing notifications deemed "sensitive," such as two-factor authentication codes. Only trusted or system applications can access these notifications. While the Phone Link app can bypass this restriction on Samsung devices with One UI 6.1.1 or later, users of other Android devices are facing challenges and have found common troubleshooting methods ineffective. Users are hoping for a resolution in future updates from Google.

Tech Optimizer

December 16, 2024

AI-powered deception: The sneaky macOS malware masquerading as your next video call

Artificial intelligence (AI) is being used by cybercriminals to enhance their scams, exemplified by a malware called Realst that masquerades as video-calling software. This malware targets macOS and Windows users and has been active for about four months. The hackers behind Realst operate under the fake company name "Meetio" and have used various aliases. They employ social engineering tactics, often contacting victims through platforms like Telegram, presenting fraudulent business opportunities, and leading them to download the malware from a deceptive website. Once installed, Realst scans for sensitive information, organizes it, and sends it to a remote server. It can extract credentials from applications like Telegram and web browsers. To protect against such malware, users are advised to verify software sources, be cautious of unexpected contacts, enable two-factor authentication, use strong passwords, keep software updated, and consider personal data removal services.

Winsage

December 15, 2024

Android 15 is preventing Windows Phone Link from showing certain notifications

Phone Link app users may experience changes in notification visibility due to a new feature in Android 15 that restricts access to sensitive notifications for privacy reasons. Notifications containing sensitive details, such as two-factor authentication codes, will not be displayed unless the application has the RECEIVESENSITIVENOTIFICATIONS permission. This permission is typically granted to system apps and some trusted third-party companion applications. Phone Link, categorized as a third-party app, is expected to request the necessary permissions to access sensitive notifications, but this will only occur for users with Samsung devices running One UI 6.1.1 or later.

AppWizard

December 15, 2024

Windows warns Phone Link won’t show ‘sensitive’ Android 15 notifications

Microsoft's Phone Link application has warned Android smartphone users on the latest Android 15 version that certain "sensitive" notifications, such as two-factor authentication (2FA) codes, will not be displayed on connected PCs due to a new privacy feature in Android 15. This feature restricts third-party applications from accessing sensitive notifications. Users with Samsung devices running One UI 6.1.1 can still view these notifications if the device has requested a "Companion Device Role," but this does not apply to other Android models like Google Pixel or Nothing Phones. A suggested workaround involves disabling the “Enhanced Notifications” option in Android 15’s settings, but this may expose users to risks from malicious applications.

AppWizard

December 13, 2024

Microsoft warns that Android 15 will make Windows Phone Link worse

Windows Phone Link in Windows 11 will face challenges due to the Android 15 update, which introduces a protocol that redacts sensitive notifications from "untrusted" notification listeners. Microsoft has informed users that certain notifications, including two-factor authentication (2FA) codes, will no longer be accessible through Phone Link. Devices pre-installed with Link To Windows can still sync sensitive notifications if configured correctly, while users of devices without Phone Link, such as Google Pixel, Sony Xperia, or Nothing Phone, will lose access to these notifications after upgrading to Android 15. Phone Link allows users to access phone notifications, applications, messages, and calls on their computer and has features like using the phone's camera as a webcam and file synchronization. The changes from Android 15 may reduce its utility for many users.

Tech Optimizer

December 10, 2024

The Risks Of Using Outdated Antivirus Software

Antivirus software is essential for protecting devices from cyber threats, but simply installing it is not enough; outdated software can lead to vulnerabilities. Outdated antivirus systems are less effective against new malware and phishing techniques, limiting their functionality and increasing the risk of data breaches. Cybercriminals often target outdated systems, which are easier to exploit due to their diminished ability to recognize threats. Additionally, technical support for older antivirus versions may become unavailable, leaving systems defenseless. To maximize security, it is crucial to keep antivirus software updated and consider additional security measures like firewalls and two-factor authentication.

Tech Optimizer

December 6, 2024

This sneaky phishing attack is a new take on a dirty old trick

Attackers are using a new phishing tactic involving Word documents that redirect users to a fake Microsoft login page to steal account credentials. This method can evade traditional antivirus detection due to the malicious content being difficult to scan. Users are advised to be cautious with email attachments, avoid clicking on links from unknown sources, consider using passkeys for account access, and enable two-factor authentication (2FA) for added security. Phishing attacks require user participation, so it's important to verify the legitimacy of requests before acting.

AppWizard

December 6, 2024

New Android Spyware Alert—Delete All These Apps Now

Samsung is tightening security measures against apps from unofficial app stores due to a newly discovered threat from a sophisticated malware called DroidBot. Cleafy, a cybersecurity firm, describes DroidBot as an advanced Android Remote Access Trojan (RAT) that combines traditional hidden VNC and overlay functionalities with spyware capabilities, including keylogging and data exfiltration. The malware has infected 77 applications, including those from banking institutions and cryptocurrency exchanges, and is present in countries such as the UK, Italy, France, Spain, and Portugal, with potential expansion into Latin America and the United States. DroidBot operates as Malware as a Service, available for rent to various threat actors, with 17 identified affiliate groups. It disguises itself as popular applications to entice users into downloading it and exploits permissions to operate covertly, particularly using Accessibility Services. Its functionalities include intercepting SMS messages, keylogging, and creating fake login screens to capture user credentials. Users are advised to avoid installing banking apps from unofficial sources, delete any malicious applications, and ensure their devices are secure by enabling Play Protect and keeping the operating system updated. Key safety measures include using official app stores, verifying app developers, being cautious with permissions, avoiding direct download links, and checking the legitimacy of apps claiming to link to established services.