This vulnerability could make your antivirus useless

Antivirus software is, naturally enough, designed to defend your PC from malicious attacks, but it seems that some of these security apps are suffering from a worrying vulnerability which has been dubbed AVGater.

The flaw in question was discovered by security researcher Florian Bogner, and here’s what it does on a basic level: the antivirus software quarantines a malicious file as it appears on the user’s PC, but the exploit allows an attacker to manipulate the restore process from quarantine, effectively letting the malware back onto the system. Where it can subsequently wreak its own particular brand of havoc.

However, before you start to fret too much, the good news is that this can’t be executed online; rather the attacker must be physically present at the victim PC.

So obviously, for the home user this isn’t going to be much of a threat – unless you’re in the habit of letting strangers into your house to use the PC for a quick bit of net surfing.

But in a business environment, with plentiful PCs, visitors to the office milling about and so forth, there could certainly be some risk.

Patched pronto

Not every antivirus product is affected by any means, and Bogner has listed a number of affected parties who have already released a fix for their AV software: Emsisoft, Ikarus, Kaspersky, Malwarebytes, Trend Micro, and ZoneAlarm.

A few more software makers have still to patch their applications, but the researcher doesn’t name any names, for obvious reasons.

On an overall level for all PC users, this is just another reminder that antivirus apps can suffer from vulnerabilities, just as with any piece of software. Indeed, last year, Tavis Ormandy – who is part of Google’s Project Zero team – found multiple flaws in major antivirus products.

As ever, always ensure your antivirus software is kept up-to-date to the latest version, and you may even want to consider running some kind of multi-layered security on your PC beyond just one antivirus app.

Via: Digital Trends


You could soon learn the limits of your NBN connection

Despite all the drama surrounding the NBN, attempts are being made to improve customer satisfaction.

NBN Co boss Bill Morrow has revealed that the company behind the rollout of the National Broadband Network is “considering” revealing to the public the maximum download speeds that homes and offices are realistically capable of expecting.

This information – available to telcos and determined when a property is being hooked up to the NBN – has traditionally been withheld from the public, giving retailers room to make false promises and, in turn, increasing customer frustration and complaints.

Last week Telstra announced it would compensate customers for breaking NBN speed promises. If this plan gets implemented, it could stop ISPs from making promises they can’t keep and help Australians make informed decisions when it comes to choosing an NBN broadband plan.

Mr Morrow said that revealing maximum internet speeds at premises is “something we have been considering discussing with the government” if the “service providers don’t volunteer to do this.”

Knock, knock. Anyone home?

Until now, customers were only able to reach out to the ISPs during an NBN installation, creating communication bottlenecks and increasing the number of “missed appointments”.

To alleviate that, Bill Morrow also revealed that NBN Co would allow customers to directly contact NBN contractors to make appointments and get information on realistic timelines regarding their NBN installation.

“There’s too many people involved and too many systems involved. So we’re completely revamping that to where we want the technician in the field, the third party contractor, to have direct contact with that end user,” Mr Morrow said.

“We’re also making sure we have more availability, better training in the field, and we’re able to predict more about the actual length of the job may take so we can do our workforce management better.”

With over 6 million premises “ready to connect” to the NBN as of the end of September, and the number growing each week, it does look like NBN Co is making an effort to do right by the end user.


Microsoft admits there are problems with the Surface – but big fixes are on the way

There have been some reports of issues dogging Microsoft’s range of Surface products, from the Surface Pro‘s issues with entering the “Sleep” state, short battery life, and the Surface Pen stylus playing up, and it now looks like Microsoft is taking these problems seriously and working on solutions.

This commitment to fixing the issues comes from a number of posts on the Microsoft Answers forum, where users can ask the community, which includes Microsoft representatives, for help with any issues they have.

Various Surface issues have been raised in the forums, and replies by Microsoft representatives give hope that Microsoft is actively working on addressing these problems.

Problem solvers

Computerworld has listed a number of issues posted in the forums and Microsoft’s replies to them. For example, in a thread about battery issues, a Microsoft representative stated that “We are aware of some members having the same battery issue with their Surface”, and that Microsoft was attempting to replicate the issue in the lab, indicating that it is looking for a solution.

In another thread about issues with the Surface Pro 4 Type Cover, a Microsoft representative says that “There will be an incoming update for Windows that can resolve your concern with your keyboard.”

Microsoft is pushing its Surface lineup of devices as premium showcases for Windows and its other services, and these high-profile problems won’t help, so it’s good to see that it appears to be listening to its customers and working to address any problems.

It also shows that if you are having an issue with your Surface device – or any Microsoft product – highlighting it on the Answers forum is a good way of getting an official Microsoft response.


Chromebooks are soon to get a major boost in multitasking flexibility

Touchscreen Chromebooks are about to get a good deal more flexible when it comes to multitasking with apps in tablet mode, thanks to the introduction of a split-screen view that will allow users to snap two apps side-by-side.

Note that this feature hasn’t been officially announced yet, but it has been talked about previously, and it has now been spotted in Chrome OS dev channel version 64 by tipster Francois Beaufort.

This major boon for touchscreen Chromebooks goes under the name of ‘Split View in Tablet Mode’ and once you activate it, the feature shows all of your active windows, and you can snap whichever apps you wish into highlighted areas to view them side-by-side.

Image credit: Francois Beaufort

Android aggro

The caveat here is that if you’re using Android apps on your Chromebook, some of these don’t support ‘snapping’, and therefore won’t function with the split view mode – with Android games being particularly problematic, it seems. Although some games don’t lend themselves very well to multitasking anyway…

Nonetheless, this is clearly a very useful extra ability which is inbound for Chrome OS, so fingers crossed its transition from testing is a smooth one. As Digital Trends observes, the feature is likely to go live in Chromebooks early next year.

Another notable recent development in the world of Chrome OS-powered laptops is the news that you could soon be sending texts from your Chromebook – another string to the flexibility bow.


How Sodexo’s digital strategy kept their users immune to demonetization

A year ago, India went into the shock of the decade as Prime Minister Narendra Modi announced demonetization of 500 and 1000 rupees notes. The event marked the nation’s swift entry into the digital economy. Indians started to adopt tools such as digital wallets to apps in a very short frame of time.

However, when every major aspect of the life was hindered and affected by the demonetization, one company that offered relief to its users and clients was Sodexo with its digital solutions. In fact, Sodexo, a renowned employee benefits service, began their digital journey few years before the demonetization, enabling them to be in a perfect position to serve their user base during the crisis of demonetization.

“With technology and digital adoption, we have two objectives. At one level we want to help the HR teams improve the quality of lives of their employees. Second, we want to simplify their lives, make it as simple as possible,” said Suvodeep Das, lead Marketing, Product development, at Sodexo India.

It wasn’t all easy for Sodexo, known for its iconic paper voucher, to make this digital leap, as they faced numerous large and small challenges.

“When Sodexo decided to go digital, we needed to establish digital acceptance in every outlet the vouchers were accepted. It took a lot of time, effort and money- infrastructure development, but Sodexo wanted to do it right, by building our own proprietary network, and now our network is the biggest in the country in terms of reach in tier 3 and 4 towns, ” Suvodeep Das explained.

“The biggest challenge was two years back when Sodexo began setting up our network. This is a year before demonetization. Almost 5000 outlets had never seen anything digital. Sodexo had to educate them- what is a card machine? What is an EDC terminal? How do you swipe? How do you take a print out? How do you do a transaction? How do you do a batch settlement? It was a huge challenge,” added Das.

As of today, the company has 40,000 plus points of acceptance across 1,500 cities in India and also a mobile app that can be used for transactions. Sodexo currently has three million daily users with a significant portion of them resorting to their digital tools such as the mobile app linked to both the meal pass cards.

However, Sodexo is in a process of constant innovation of its digital solutions. One of the digital solutions Sodexo has developed recently is “Tap & Pay.” Instead of the normal paper vouchers and RF-ID cards, Sodexo is trying out NFC- enabled cards.

Presently, Sodexo is incorporating this NFC based technology into the existing cafeteria pass they offer. At various cafeterias across IT Parks, they are replacing chip-based cards with NFC cards.

On the other hand, Sodexo is already working towards eliminating paper voucher, cafeteria cards and meal passes by integrating the employee benefits into their existing company ID cards for employees. According to Das, “many companies have the ID cards that they use for punching in, checking out etc. and the card can be used as their cafeteria pass as well. Thus the employee will not have to carry two cards.” Sodexo is currently running a Company ID-Based Solution as a pilot program with a client based in Bangalore.

According to Sodexo, the ultimate goal of simplifying the process of an employee accessing their benefit is about saving time and fostering productivity. And that is exactly where Sodexo’s food order app comes into play.

“You have the menu on the app, you order through the app and pay through the Sodexo Meal or Cafeteria Card. The order goes to the merchant, and once the order is ready, the merchant presses a button giving you a notification that your order is ready, Suvodeep Das explained it’s working. As a result, hundreds of working hours can be saved in a firm which is now wasted standing in a cafeteria queue.

According to Das, Sodexo is going to play a bigger role in the future of Digital India, as more and more tools are being developed globally. And it is a just a matter of times they bring the right ones to Indian users.


Gemalto launches multi-connectivity module

Gemalto has launched an integrated IoT module that offers a variety of connectivity options for manufacturers and integrators.

One of the areas that has been hampering the rollout of IoT has been standardized connectivity: the existence of a variety of 12 LTE bands (as well as different forms of cellular coverage) has meant various logistical problems.

The Gemalto Cinterion PLS62-W IoT Module delivers LTE Cat1 connectivity on all 12 LTE bands as well as offering fallback to multi band 3G and 2G networks. This means that integrators are able to develop a single application that can connect anywhere in the world, regardless of the cellular network standards in the region.

Embedded Java

In addition to this, Gemalto has also included a Java embedded system in the module that has been designed to make it easier to build applications. It does this by sharing memory, a large library of existing open source code and recognized software building blocks. The module also contains a power management system and optimized sleep mode to preserve power, an essential element for industrial usage.

Andreas Haegele, senior vice president IoT products at Gemalto, said the product offered great flexibility. “The Cinterion multi band LTE Cat1 module is ideal for worldwide tracking and tracing, telematics and fleet management solutions, offering a one stop shop for cellular IoT connectivity, no matter where your IoT solutions are deployed or where they move. It is perfectly suited for applications that need to operate across many different wireless network environments for many years. “


Vodafone aims to compete with BT’s Openreach with massive 1Gbps broadband investment

Vodafone and CityFibre have announced a partnership which will bring FTTP (fibre-to-the-premises) to approaching five million homes and businesses across the UK.

In other words, this will be Gigabit-capable fibre (1000Mbps) which runs directly into the home or office in question (as opposed to fibre-to-the-cabinet, which still uses the phone line for the last leg of the connection from the cabinet).

The fibre rollout will begin in the first half of next year with a million premises expected to be hooked up by 2021, and a further four million homes and business premises expected to be connected by 2025.

Openreach has previously said that it’s aiming for two million full fibre connections by 2020.

Post-construction, Vodafone will initially have exclusive rights to sell the fibre connections to punters, although this will only be for a certain period of time (which wasn’t specified by the companies).

Full fibre diet

As CityFibre notes, the government has a target of connecting 10 million premises to full fibre by 2022, and this will go some way towards the end – in fact, it will achieve half that target number ultimately (although not by 2022, but rather 2025).

Rob Hilborn, Head of Strategy at Broadband Genie, commented: “Full fibre broadband needs to be the focus for us going forward. Openreach has been working on a rollout of technology which is a cost effective upgrade on existing broadband infrastructure, but it still feels like a stop-gap measure.

“Deploying FTTP around the UK won’t be cheap, but it’s a long term investment that will provide us with future-proof connections. However, while the focus for this investment is likely to be on cities, in the long term we will need a plan for the rest of the country as to not leave them behind and risk widening the digital divide further.”


Best Kindle cases and covers

If you’ve landed here, it’s likely you already have an Amazon ereader and you’re looking for a way to protect your device in your bag or even while you’re deep in the latest Jack Reacher novel.

That’s why we’re here to recommend some of the best cases and covers for each version of the Amazon Kindle that’s currently on sale.

Below you’ll find two cases we love for each current Kindle product, including the latest versions of the Amazon Kindle, Kindle Paperwhite, Kindle Voyage and the Kindle Oasis.

Note: we’ve scoured the web for all of the Kindle cases and covers out there on sale right now and here are a selection of the ones we like the look of. These have been ranked from cheapest to most expensive according to prices at time of writing.

Best cases and covers for Amazon Kindleg

Note: the cases listed will only fit the most recent version of the Amazon Kindle, which was released in 2016 and is often referred to as one of the eighth generation Kindles.

This case comes with drop protection, so if your Kindle takes a tumble out of your hand toward the floor it should help protect the corners, edges and – thanks to its raised sides – even the screen.

You’ve only got a choice of pink or blue for this Kindle cover and there’s no protection against scratches on your screen while it’s tumbling around in your bag, but it’ll protect the edges nicely.

Amazon has produced a protective cover for the Kindle that doesn’t cost the earth and will make sure you don’t scratch up and dent the edges and rear of your Kindle when you’re reading on the move.

You can buy it in black, blue, pink or white and it gives the generally quite dull looking Kindle a big splash of color that some will love.

With a durable fabric material on the inside and an automatic wake function when you flip the case lid up, this may well be the best cover for your Kindle.

Best cases and covers for Kindle Paperwhite

Note: the cases below fit all generations of Kindle Paperwhite products, so they’ll be suitable for any version of the Kindle Paperwhite ereader you own.

Again this case is from Amazon and the company has promised it’s suitable for all versions of the Kindle Paperwhite, no matter when you bought your device.

The color options here are limited to blue, black, pink and white, but there are some bold choices if you’re looking for a striking cover for your Kindle, and the case also comes with a cover for the screen, so you can be safe in the knowledge that it’s not going to get scratched while in your bag.

If leather is the look you’d like to spread all over your ereader, this case from Amazon is likely the best choice to wrap your Kindle Paperwhite up in, and it comes in a selection of color options too.

Those colors are orange, pink, black, blue and a deep purple that we really love, plus this case isn’t that expensive considering it’s made of leather, giving it a premium look and feel.

Best cases and covers for Kindle Voyage

Note: the cases below fit the only generation of the Kindle Voyage, which was released back in 2014.

Another case directly from Amazon here and this one for the Voyage can be folded so you can prop up your Kindle and read without having to hold onto your ereader.

It’s not the cheapest Kindle Voyage cover we’ve seen, but the design is durable and it’ll protect the screen when you’ve left your ereader in your bag, so it should help you avoid having to read ebooks through scratches.

This case is largely similar to the one above, but this one comes in leather. Be warned that it isn’t cheap as it’s a limited edition from Amazon, but it may be what you’re looking for to protect your ereader from daily wear and tear, while adding a touch of style.

It’s a shame this cover only comes in brown, but it’s a nice color and really shows off the high quality leather too.

Best cases and covers for Kindle Oasis

Note: the listed cases will only fit the most recent version of the Amazon Kindle Oasis that was released in 2017. They won’t be suitable for the eighth generation Oasis that came out in 2016.

With the Kindle Oasis being waterproof, you’ll also want a case that can take the odd splash of water too. That’s why Amazon has made this water-safe Kindle Oasis cover that will snap magnetically onto the back of your super-premium ereader.

You’ve got limited color choices of just blue, white or black, but each looks attractive and protects the front of your Kindle Oasis too. This cover also works as a stand, as the name suggests, so you can use your Kindle Oasis hands-free.

The only downside is that while covering the front it doesn’t cover (and therefore doesn’t protect) the thick part of the Kindle’s rear.

Our final case for the Kindle Oasis also comes from Amazon itself, and it’s a fairly premium though less water-safe alternative to the cover above.

You have color choices of black or tan leather, despite the image above also showing a dark brown (as that’s not currently on sale).

When you’ve got the Kindle open the case lets you prop it up so you can read easily, and the slim design means it won’t feel much thicker than the Kindle itself.


Delayed repairs to your broadband? You’ll now get automatic compensation

Ofcom has announced a new scheme whereby landline and broadband customers in the UK will receive automatic compensation from their ISP in the event of delayed repairs or missed appointments.

Following a consultation on the matter, the watchdog has announced that BT, Sky, TalkTalk, Virgin Media and Zen Internet have agreed to pay their users compensation in the event of delays.

So here’s how it will work. If a phone or broadband connection goes down, and isn’t ‘fully’ fixed within two working days, for each subsequent day that the connection isn’t functional, the customer will get £8.

If the service provider’s engineer fails to turn up for an appointment – or cancels with less than 24 hours’ notice – the customer gets £25 compensation.

And compensation will also be provided for delays when setting up a new phone or broadband connection. If the ISP misses your allotted start date, for every day that you’re delayed, you will receive £5 compensation.

This is clearly good news for consumers, who will no longer have to battle to get compensation in the case of such delays, with money being credited to their account automatically instead.

Putting things in place

Although Ofcom notes that implementing this automatic process is a fair undertaking for service providers, and therefore there will be a period of 15 months to allow everything to be put into place.

The ISPs currently subscribed to the automatic compensation scheme represent around 90% of landline and broadband users in the UK, according to Ofcom. And more providers are expected to sign up further down the line.

Lindsey Fussell, Consumer Group Director at Ofcom, commented: “Waiting too long for your landline or broadband to be fixed is frustrating enough, without having to fight for compensation.

“So providers will have to pay money back automatically, whenever repairs or installations don’t happen on time, or an engineer doesn’t turn up. People will get the money they deserve, while providers will want to work harder to improve their service.”

Ofcom further noted that the scheme will benefit small businesses, too, as around a third of SMBs in the UK use residential landline and broadband services (as opposed to a dedicated business plan).


Cryptocurrency wallet blunder freezes up to $280 million of Ethereum

The world of cryptocurrency can be a volatile place, and not just in terms of the value of virtual coins, as a fresh blunder with Ethereum has illustrated, leaving hundreds of millions of dollars in limbo.

An estimated $280 million (around £215 million) of the virtual currency – the exact amount is unclear at this point – has been frozen following an issue that affects multi-sig wallets with the Parity service (those are wallets designed for organizations which require more than one signature, hence the name multi-signature).

The problem occurred thanks to a vulnerability in the multi-sig wallets introduced when a new version of the Parity Wallet library contract was implemented back on July 20. Ironically, this was a fix for a previous issue affecting multi-signature wallets.

Apparently this flaw was triggered thanks to a mistake made by an unidentified code contributor.

Suicide is painful

In a ‘critical security alert’, Parity explains: “It would seem that issue was triggered accidentally 6th Nov 2017 and subsequently a user suicided the library-turned-into-wallet, wiping out the library code which in turn rendered all multi-sig contracts unusable since their logic (any state-modifying function) was inside the library.”

The upshot of this is that no funds can be withdrawn from the affected multi-sig wallets.

In yesterday’s statement, Parity notes that it is currently analyzing the situation, and will provide an update ‘shortly’; so perhaps today. And hopefully with a solution that will ease the fears of those with affected wallets.

Even if a swift and solid solution is found, these sort of incidents damage the reputation of virtual currency for obvious reasons.

Via: Engadget

Top image credit: BTC Keychain (Flickr)


Differentz Ways of Fun

Facebook Iconfacebook like buttonTwitter Icontwitter follow buttonBlog