Day: November 22, 2014

If you recently upgraded your Android device to Android 5.0, known as the “Lollipop” version, you may be experiencing some strange performance issues after the upgrade if you enable encryption. It appears that the problem is caused by disk encryption of the Android device which can be turned off in the new Nexus devices. It is a “feature” and not a bug! However, users are very upset by the performance hit that this new feature causes. In testing a Motorola Nexus 6 that didn’t have encryption enabled (which is not the way it normally comes) testers at AnanTech discovered that it was, in fact, the disk encryption in the Nexus 6 that slows down the read-write disk speeds… and, unfortunately, you can’t turn it off once enabled.

During tests with a Nexus 6 running without encryption, and another one with it enabled, they saw as much is a 63% decline in read performance and a 50% decline in write performance in the device with encryption enabled. If your math impaired, in terms of understanding those numbers, that’s a big deal!

Now, if you want to turn off your disk encryption in order to see at a performance improvement; you can’t on the Nexus 6 or Nexus 9, at least not at this time.

The geeky folks over at XGA are tinkering with a new boot.img image that will disable the forced encryption, but this is annoying fix for a problem that Google should have already provided a workaround for. We should not have to rely on some hackers to fix their problem!

One would hope that Google will respond to this and give users a way to encrypt their phones and restore performance to reasonable levels!

I totally want one!

Geek – By: Lee Mathews – “Supporters of software freedom and open source have plenty of choices when it comes to apps. When it comes to hardware? Not so much. The Librem 15 laptop is hoping to change that.

Like the clunky old netbook that Richard Stallman bangs on, the Librem 15 is all about FOSS. It’s a beast of a machine that features a quad-core Intel Core i7 processor, Nvidia GT840M graphics, and a 15-inch 1080p display. Purism, the company behind the Librem 15, plans to ship a customized version of Trisquel Linux (one of the few distros that gets a thumbs up from the FSF). The Librem 15 certainly looks good. It’s relatively slim at 22mm and not too heavy, weighing in at 4.4 pounds — comparable to similar systems from OEMs like Asus and Dell.

This laptop would eat the last FSF-certified machine we wrote about for lunch. It’s also a huge step up from the DIY Novena, though it’s worth noting that the Novena is genuinely totally free: hardware, firmware, software. That’s why it runs an underpowered Freescale CPU instead of a ballsy Intel Core chip.

A totally free gaming laptop is an interesting — albeit slightly conflicted — device. Even if founder Todd Weaver and Purism manage to get Intel to free up all their closed binary blobs, the games you would likely want to play on a machine like this probably aren’t FOSS.

There’s an ever-growing list of good, free, open source games out there. There are more titles coming to Steam for Linux all the time, too, but the $1,400 Librem 15 is open hardware that wants desperately to play in the closed-source world of PC gaming. It’s a steep hill to climb, to be sure.

Still, if you’re committed to the FOSS movement, the Librem 15 could be the horse you want to back. Companies like Purism can’t achieve their goals without funding, so head on over to Crowd Supply and pledge if you’d to help them succeed.”

If you want one, order it here: Crowd Supply – Librem 15 Laptop

(Cross-posted from the Hand Held Hack) I HATE Malware. I am OK with lining up the perps that write it and shooting them (metaphorically.) I guess.

Malicious Software Said to Spread on Android Phones

Bits Blog – New York Times – By: Nicole Perlroth – “For years security researchers have warned that it was only a matter of time before nasty digital scourges like malicious software and spam would hit smartphones.

Now they say it is has finally happened.

A particularly nasty mobile malware campaign targeting Android users has hit between four million and 4.5 million Americans since January of 2013, according to an estimate by Lookout, a San Francisco mobile security company that has been tracking the malware for about two years.

Lookout first encountered the mobile malware, called NotCompatible, two years ago and has since seen increasingly sophisticated versions. Lookout said it believes, based on attempted infections of its user base of 50 million, that the total number of people who have encountered the malware in the United States exceeds four million.

Criminals infect smartphones primarily by infecting legitimate websites with malicious code. When victims visit the site from their mobile phone, they inadvertently download the code, in what is known as a “drive-by download.”

In other cases, the attackers sent spam from hijacked email accounts to their victims. That technique, Lookout’s researchers say, successfully caused more than 20,000 infections a day. More recently, researchers say, attackers have been tricking their victims into installing the malicious code by disguising it as a ‘security patch’ in an email attachment. In others, spam emails advertised weight loss solutions with a link that served up malware to Android users.

The attackers goal, researchers say, is to infect as many smartphones as possible and turn them into a so-called botnet, a network of infected devices that can be used by attackers for various malicious purposes. Lookout’s researchers say there is evidence that Not Compatible’s authors are renting out control of infected mobile devices to people who have used them to simply send out more spam or buy up event tickets in bulk from from Ticketmaster, Live Nation, EventShopper and Craigslist. Some have used infected devices to try to crack WordPress accounts.

Lookout says the malware, now on its third iteration, allows infected devices to search for and communicate with other infected machines and share intelligence. Attackers also have found a way to encrypt communications between their command and control center and infected devices, which makes it more difficult to detect and decipher.

The latest version, Lookout said, ‘has set a new bar for mobile malware sophistication and operational complexity.’

All this malicious activity can be costly. The criminals are incurring data charges on phones that, ultimately, victims are held responsible for. As if that weren’t annoying enough, researchers say the malware causes tremendous battery drainage.

As with most malware discoveries, Lookout, the company sounding the alarm, has a stake in raising concerns about the security of mobile devices. Its mobile security application, which is available for both Apple’s iOS and Android-powered smartphones, is able to identify the NotCompatible malware and keep it from infecting Android devices that have downloaded the Lookout app.”