Tag Archives: AVG Antivirus for Android

Over 900 million Android devices at risk from QuadRooter vulnerabilities

What is QuadRooter?

Researchers at Check Point® Software Technologies have released details of four vulnerabilities, which they have dubbed ‘QuadRooter’, that affect Android™ smartphones and tablets built with Qualcomm® chipsets.

Any one of these vulnerabilities could be exploited by a malicious app downloaded onto the user’s device which, without their knowledge, would allow the attacker to gain full access to the phone. Considering the significant amount of personal and business data we store on our connected devices, this has major security implications.

According to Check Point, some of the Android devices that contain this chipset and which are therefore at risk include:

  • BlackBerry Priv
  • Blackphone 1 and Blackphone 2
  • Google Nexus 5X, Nexus 6 and Nexus 6P
  • HTC One, HTC M9 and HTC 10
  • LG G4, LG G5, and LG V10
  • New Moto X by Motorola
  • OnePlus One, OnePlus 2 and OnePlus 3
  • Samsung Galaxy S7 and Samsung S7 Edge
  • Sony Xperia Z Ultra

 

How to protect your Android device from QuadRooter

If you own one of these handsets, it does not mean that you have been the subject of an attack that gains control over your device. For the attack to be successful, it must download the malicious app that takes advantage of one of these four vulnerabilities to your device.

Ensure you update your handset with any security patches available for the issue. For example, Qualcomm has already released a fix for all four vulnerabilities while Google has released patches for three of the four, with the final fix expected in the very near future.

In addition, there are four steps you can take to make sure your device is as secure as possible:

 

  1. Your device should automatically prompt you to download and install the latest available updates. Tip: make sure you have a wi-fi or broadband connected before downloading as some updates can be large.
  1. Only download apps from official apps stores such as Google Play. Avoid sideloading apps, such as when you are offered an app on a web site. To ensure you get the authentic app, go to the Google Play store directly and download it from there. This reduces the risk of getting a malicious app by accident.
  1. Switch on the “verify apps” function in your Android settings. This means that even if you do download an app from somewhere else, this feature will check with the official app store to make sure it’s compliant.
  1. Protect your device with antivirus software such as AVG AntiVirus for Android and make sure you keep it updated. Should an attacker use the vulnerability to plant the malware on your phone or tablet, an up-to-date antivirus program will detect and prevent its execution.

 

The best advice I can give is not to panic and not to be complacent. Vulnerabilities like this are actually relatively common and taking preventative action quickly will help protect your devices and your data from unnecessary risk.

What’s Killing Your Phone’s Performance? Probably 1 (or More) of These 20 Apps

Have unlimited storage, data, battery? Then resume cat videos. But if you get “storage full” messages just before your kid’s solo or a smartphone that dies before lunch, read on.

If you feel like your phone poops out every time you really need it, don’t worry—it’s not you.

We hate to break it to you, but … It’s your apps.

We know, you love them. But it might be time to … take a break, from at least a few.

How can you know, though, which ones are sucking your battery life at the speed of light, devouring your bandwidth, and hogging every inch of space on your Android? AVG’s latest Android App Performance & Trend Report lines up the worst of the worst … and points out who’s cleaned up their act.

By analyzing anonymized data from 3 million AVG AntiVirus for Android users, we’ve done the hard work for you, and now all you need to do to get the most from your phone’s resources is compare your app roster to the lists below (Get the full report).

Top 10 user-run performance-draining apps

This rogues’ gallery highlights those which overall have the highest impact, meaning a combination of all 3 factors: battery life, data use, and storage.

/var/www/now.avg.com/18.47.0/wp content/uploads/2016/07/mobileperform

Notice anything? Spotify, Snapchat, and Outlook, apps that millions of people likely use every day, are in top spots. If you’re nowhere near a power outlet, our advice is simple: avoid using these apps for long periods of time. I myself notice that if I’m using Spotify, in particular, while browsing the web and checking email, that my Android barely makes it though a half-day before shutting down.

Snapchat’s top position was also no surprise. What was surprising was our discovery, during testing, that though the app appears to remove images and videos from conversations, Snapchat actually cached quite a few files. YouTube was also guilty of this, reaching 270 MB just after a couple of days.

Top 10 performance-draining apps that run at start-up

/var/www/now.avg.com/18.47.0/wp content/uploads/2016/07/mobileperform1

Tops spots are held by Facebook and Facebook Messenger, because they continuously check for updates and send notifications. Our advice: Uninstall Facebook apps and use your browser and the web version (www.facebook.com), instead. You may notice that manually checking your feed only when you need to can make all the difference … and not leave you with a useless phone.

The last word … for now

It’s almost funny how the performance of our pocket-sized smartphones has exceeded that of PCs considered high-end just 5 years ago. Yet we’re still bound by 16 and 32 GB built-in storage, data caps, and battery technology that hasn’t improved in ages. Until the smartphone world resolves these issues, we’ll keep on keeping you informed about how you can get the most from your devices, without missing out on what’s so vital (and fun!) about them in the first place.

 

/var/www/now.avg.com/18.47.0/wp content/uploads/2016/07/download button

AVG AntiVirus for Android “Marshmallow” update, now easier to use

At AVG we are constantly improving our products, ensuring you get the best experience and features to help keep your digital world safer and more secure.

We’ve recently updated our popular AVG AntiVirus for Android app. It provides compatibility with the latest version of Android, and it has improved performance and is even easier to use.

 Google’s latest Android operating system update (called ‘Marshmallow’) has been released, so we’ve ensured AVG AntiVirus for Android is compatible and ready to install, so that there’s no disruption to the security and protection of your device and its data.

We’ve also taken the easy-to-use interface and improved it further! The design has been updated in line with Google’s Material Design principles for a more attractive and unified experience on your Android device.

AVG Anti-Theft & App Lock now share the same PIN. That’s one less code you need to remember to access your advanced security features.

If you don’t already use the Anti-Theft feature, you’ll want to consider enabling it to help secure your data in case your device is ever lost or stolen. It allows you to:

  • Sound an alarm on your device
  • Lock your device
  • Locate your device on Google Maps
  • Wipe your personal data

The ability to erase your personal data from a device is very useful these days, if not essential. Once enabled, it will help you avoid a potential data breach which, as we’ve seen, can have serious consequences.

We’ve also introduced some additional fixes and improvements behind-the-scenes to ensure you get the best experience and protection for your mobile device.

If you haven’t already updated AVG AntiVirus for Android, we recommend you update now. If you don’t have security software installed yet, download AVG AntiVirus for Android for free from Google Play to help protect your devices against viruses, malware and spyware.

Stagefright the sequel – Android devices vulnerable again

Researchers at Zimperium, a specialist cybersecurity company, has announced that it has found another major vulnerability in the Android operating systems that many of us use on our mobile devices.

A blog post published by Zimperium says “Meet Stagefright 2.0, a set of two vulnerabilities that manifest when processing specially crafted MP3 audio or MP4 video files.” Nearly every single device since Android 1.0, released in 2008, is affected according to the blog post. The researchers were able to exploit the flaw in devices running Android 5.0 and later, and conceptually nearly every single device since Android 1.0 (2008) could be affected. According to Zimperium, earlier devices could be impacted through media players and instant messenger that use the Stagefright library.

Media files carry additional information called metadata, which is processed when the file is opened or previewed. This means the video or audio file on the device would not even need to be opened by the user for the attack to occur. Once the device was infected, the most likely method an attacker would use would be via a web browser.

How might this happen in a real environment?

  1. An attacker will try to convince you to visit a link that points to an infected website via either a malicious ad campaign or using spear-phishing techniques.
  2. An attacker on the same network as you could inject the exploit by intercepting your mobile network traffic destined for the browser.
  3. Infection of 3rd party apps that are using the vulnerable software library.

Zimperium has said that they notified Google’s Android Security team in August, and that Google responded quickly to try and fix it. They’ve also said that full technical details of the exploit will not be released publicly until Google has confirmed that the issue has been fixed and is available to users.

Bugs and vulnerabilities in operating systems are not uncommon. This exploit highlights the need for users to ensure that their devices are running the very latest version of their operating system and applications.

Unfortunately, unlike the first time Stagefright appeared, when disabling the automatic retrieval of MMS messages could prevent your device from being infected, this time we need to wait for the update from Google, our phone carrier as well as our handset manufacturers to make it available to us.

In the meantime there are some precautions you can take:

  • Check with your handset provider or carrier for a patch/update.
  • Update all the apps you have on your device.
  • Avoid downloading media files from untrusted sources, and even when trusted, use caution.
  • If you haven’t disabled the ‘Auto retrieve MMS’ feature, switch it off now.

Remember, the most important thing you can do is keep your operating system and apps up to date. For that extra layer of protection, download AVG AntiVirus for Android to help protect your devices against malicious phishing sites.

Follow me on Twitter @TonyatAVG

AVG makes privacy crystal clear with Short Privacy Notice

In our connected world, mobile technology is an integral part of daily living. Apps help us find the stores we are looking for, meet our friends at the right time and place, and keep us safe online. We trust these apps with our personal information in exchange for these services, which are often free. Sometimes we share sensitive information with the app in order to optimize that service. But do we ever think about what these apps do with the data they collect, and do we really know why they collect it?

At AVG, we believe that building trust in relationships is important. Transparency is a key element to build that trust which means you have to know what’s going with the data behind the app. The mobile environment is even more challenging because of the limited space and form factor. We’ve been innovating in this area to better show users what data is collected and how it is used. We’ve done this with initially with a Short Data Privacy Notice that tells our customers in a clear, straightforward, and transparent way what our apps collect and share in an easy to read form. Today I am delighted to tell you that the AVG Short Data Privacy Notice has been launched on our following apps:  AVG AntiVirus FREE for Android, AVG Privacy Fix and AVG Cleaner for Android. Overtime we expect this approach will become the standard in mobile and desktop environments.

This simple-to-use feature is accessed from the corner menu of the app main screen. To ensure full transparency for all our customers, we still give quick and easy access to our full privacy policy notice at the bottom of each page of the AVG Short Data Privacy Notice.

spn1

In the video below, AVG’s Chief Legal Officer Harvey Anderson explains how to use the AVG Short Data Privacy Notice and what we disclose to you through it.