WEEKLY NEWSLETTER 21 - 26 AUGUST 2023
Hello and Welcome,
Meetings This Week
NO MEETINGS
Meeting Next Week
2023/09/02 — 13:00-14:00 — September, Sat — Penrith Group
Schedule of Current & Upcoming Meetings
First Tuesday 18:00-20:00 — Main Meeting
First Saturday 13:00-14:00 — Penrith Group
Second Tuesday 18:00-20:00 — Programming
Third Tuesday 10:00-12:00 — Tuesday Group
Third Saturday 14:00-16:00 — Web Design
----------
Go to the official Sydney PC Calendar for this month's meeting details.
----------
Penrith meetings are held every 2nd month on the 1st Saturday from 1-2 pm.
The following meetings are in September and November 2023.
ASCCA News:
Tech News:
Google Admits Play Store Security Loophole
See the InfoPackets article by John Lister on August 14, 2023, at 12:08 pm EDT.
Google says malware creators are using a simple workaround to bypass security on the official Play Store for Android apps. The problem is that the simplest fix would undermine one of the key differences between Android and closed systems such as Apple.
In theory, all apps in the Play Store are vetted for security, including malware checks. That's one of the reasons Google recommends only using the Play Store, while still giving users the choice to get and install Android software from other sources.
The problem is that scammers are using an extremely simply workaround called "versioning". That takes advantage of dynamic code loading, in which an app doesn't rely solely on the code that's permanently part of the app file itself. (Source: techspot.com)
Instead, it retrieves code "on the fly" from a remote server. In principle that can be useful as it reduces the size of the app file and thus the space it permanently takes up on a device.
Clean Apps Turn Dirty
The problem is that the scammers are creating clean versions of their apps that can pass the Google Play security checks. Once installed and running, the app then loads malware from a remote server and begins its malicious activity. (Source: google.com)
Google doesn't physically stop apps from doing this, though using dynamic code loading to alter the app is a violation of the Play Store terms and conditions. It will remove such apps from the store, but that doesn't remove them from devices where they are already installed.
The big problem is that two of the main ways to mitigate this risk would involve changing the balance between security and user freedom that's at the heart of an "open" system such as Android, particularly in comparison to Apple's heavily-controlled iOS.
One change would be to exercise much more control over how apps work and their code, putting in more technical barriers that prevent dynamic code loading being abused.
Removing Apps Would Be Controversial
Another would be for Google to create and use the ability to remotely disable or remove Play Store apps from Android devices. That would boost security, though many users might be uneasy about Google having the power to uninstall apps.
One compromise might be for Google to use device notifications to warn users when an app on their phone has been removed from Google Play for security reasons. The notification could recommend uninstalling the app but leave the choice up to the user.
What's Your Opinion?
Does Google have the right balance between security and openness? Would you be happy for it to remotely uninstall apps it believes were now a security risk? Would a prominent warning be a better solution?
Protect my PC from viruses — For Windows 11, Windows 10 and Windows 8.1
[ Advice from Microsoft at https://support.microsoft.com/en-us/windows/protect-my-pc-from-viruses-b2025ed1-02d5-1e87-ba5f-71999008e026 — Ed. ]
This article is about ways to protect your PC from viruses that can screw up your computer, or allow criminals to steal your data, personal information, or money.
— Use an anti-malware app — Installing an anti-malware app and keeping it up to date can help defend your PC against viruses and other malware (malicious software).
Microsoft Defender is free anti-malware software included with Windows, and it's kept updated automatically through Windows Update. There are also anti-malware products made by other companies that you can choose from.
More isn't always better
Running multiple anti-malware apps at the same time can cause your system to be slow or unstable. If you install an anti-malware app from a different company, Microsoft Defender will automatically turn itself off. If you install two anti-malware apps from other companies, however, they might both try to run at the same time.
— Don't open email messages from unfamiliar senders, or email attachments that you don't recognize — Many viruses are attached to email messages and will spread as soon as you open the attachment. It's best not to open any attachment unless it's something you're expecting. For more information see: Protect yourself from phishing.
— Use a pop-up blocker with your internet browser — Pop-up windows are small browser windows that appear on top of the website you're viewing. Although most are created by advertisers, they can also contain malicious or unsafe code. A pop-up blocker can prevent some or all of these windows from appearing. The pop-up blocker in Microsoft Edge is turned on by default.
— If you're using Microsoft Edge, make sure SmartScreen is turned on — SmartScreen in Microsoft Edge helps protect you from phishing and malware attacks by warning you if a website or download location has been reported as unsafe. For more info, see How can SmartScreen help protect me in Microsoft Edge?
— Pay attention to Windows SmartScreen notifications — Be cautious about running unrecognized apps downloaded from the Internet. Unrecognized apps are more likely to be unsafe. When you download and run an app from the internet, SmartScreen uses info about the app's reputation to warn you if the app isn't well-known and might be malicious.
— Keep Windows updated — Periodically, Microsoft releases special security updates that can help protect your PC. These updates can help prevent viruses and other malware attacks by closing possible security holes.
Windows Update helps to make sure that your PC receives these updates automatically, but you may still have to restart your machine occasionally for the updates to install completely.
— Use your internet browser's privacy settings — Some websites might try to use your personal info for targeted advertising, fraud, and identity theft. All modern browsers have privacy settings that you can enable to control what sites can see or do.
For more information about configuring the privacy settings in Microsoft Edge see Configure your privacy settings so they're right for you.
— Make sure User Account Control (UAC) is turned on — When changes are going to be made to your PC that require administrator-level permission, UAC notifies you and gives you the chance to approve the change. UAC can help keep viruses from making unwanted changes. To open UAC, swipe in from the right edge of the screen, and then tap Search. (If you're using a mouse, point to the upper-right corner of the screen, move the mouse pointer down, and then click Search.) Enter uac in the search box, and then tap or click Change User Account Control settings.
— Make sure that Tamper Protection is turned on — In Windows 10 and 11 we have a feature called Tamper Protection that prevents unauthorized apps from changing your security settings. Many viruses and malware try to disable anti-malware software or other security settings when they're installed in order to evade detection. See Prevent changes to security settings with Tamper Protection for information on how to confirm that it's turned on.
How do I uninstall antivirus or antispyware programs?
If you use more than one antivirus or antispyware program at the same time, your PC may experience decreased performance, become unstable, or restart unexpectedly.
Caution: When you remove your currently installed Internet security programs, your PC is in an unprotected state. If you haven't installed another antimalware program make sure that Microsoft Defender Antivirus is enabled, and that Windows Firewall is turned on.
To uninstall unwanted antimalware software:
1. — Go to Start > Settings > Apps
2. — Find the unwanted app or apps and select it
3. — Select Uninstall
Your machine will likely need to reboot after each app is uninstalled.
Note: Some security software may not uninstall completely. If you're unable to fully uninstall an app, go to the publisher's website or contact their technical support line for help.
Fun Facts:
New Smartphone Touchscreen Works When Wet
See the InfoPackets article by John Lister on August 15, 2023, at 01:08 pm EDT.
A high-end smartphone may solve one of the main problems with touchscreens. The OnePlus Ace 2 Pro works even in the rain or when the user has wet fingers.
A touchscreen works by passing a very low-powered (and safe) electrical charge across the screen. When a finger touches the screen, the charge is diverted to run across the finger. The device can then see which part of the screen "lost" charge and thus where the finger pressed. (Source: iop.org)
This is why touchscreens don't work well with most gloves, which are made of various materials that work as insulators and don't conduct electricity. Special touchscreen compatible gloves have small patches of conducting material in the fingertips.
Water Confuses Touch Signal
Unfortunately, water is an extremely good conductor, which means if there's any droplets on the screen, the charge will be diverted away from the screen. The device will often struggle to figure out which "breaks" in the charge are caused by water and which by a finger.
Chinese phone maker OnePlus says its new Ace 2 Pro handset overcomes this problem. It made a video that appear to show a user able to type in an unlock code during a rainstorm that leaves an iPhone 14 Pro user locked out. The video also shows a similar contrast during foggy conditions.
The company says the solutions starts with three custom algorithms, but doesn't elaborate on how they work. There's a good chance that they use an approach that's obvious to imagine but complex to pull off: making informed guesses about whether a "touch" is by a finger or by water.
Dedicated Chip Required
This could involve a combination of considering the size of the "touched" area and also looking at what was on the display and thus where somebody might be most likely to intentionally press.
It seems this requires a lot of calculations to pull off accurate as OnePlus says it uses a dedicated chip to handle input on the touchscreen. That likely means that even if other manufacturers copy the approach, the feature may be restricted to premium handsets. (Source: zdnet.com)
What's Your Opinion?
Have you had problems using a touchscreen in wet conditions? Do you buy OnePlus's claims to have solved the problem? Is it enough of an inconvenience to make it worth paying more for a handset?
User Comment:
Touchscreen works when wet
Permalink Submitted by Wing and a Chair on Tue, 15/08/2023 — 14:15
Boy howdy! The next thing you hear will be that someone has invented a fountain pen that writes under whipped cream!
Watch Jeff Taylor, Entertaining YouTube Commentator from the UK.
WARNING — STRONG OPINIONS AHEAD — Ed.
DATED 2019: Here are some nasty comments in Reddit by Simon Drake — Ed.
I (Simon Drake) stumbled across Jeff Taylor's YouTube Channel and a swarm of angry angry videos with incredibly angry User Comments.
"HELLO, THERE", from Jeff Taylor, Commentator from the UK
Is Jeff Taylor for real? Are his comments genuine or is it a wind up?
All the comments are the same cr*p over and over, usually in all caps:
No surrender.
It looks like civil war is the only solution.
Bring on a General Election, revenge time for remoaners.
They [MPS] are traitors.
SUPPORT THE BREXIT PARTY.
Remoaners are on the ropes, crying and playing the victim.
Shut the bars in Parliament until after October 31st and breathalyse all MPs.
We need to leave, Germany is in recession and France is not far behind.
Is Brexit Britain what the People Voted for!!?
HAVE NO WORRIES, Their DAY of RECKONING IS YET TO COME.
This anti-Brexit parliament is finished.
Close it down and arrest the traitors!
We are going on 31st of October period, with a deal or no deal.
When will Brexiteers begin their civil war?
I'm not sure what's worse, that there's a series of bots posting the same cr*p over and over or that there's a swarm of people that genuinely believe Boris shutting down Parliament is an act of saving democracy from the evil communist EU.
— Simon Drake
[ Have a look and see what you make of it all — Ed. ]
Meeting Location & Disclaimer
Bob Backstrom
~ Newsletter Editor ~
Information for Members and Visitors:
Link to — Sydney PC & Technology User Group
All Meetings, unless explicitly stated above, are held on the
1st Floor, Sydney Mechanics' School of Arts, 280 Pitt Street, Sydney.
Sydney PC & Technology User Group's FREE Newsletter — Subscribe — Unsubscribe
Go to Sydney PC & Technology User Group's — Events Calendar
Are you changing your email address? Would you please email your new address to — newsletter.sydneypc@gmail.com?
Disclaimer: We provide this Newsletter "As Is" without warranty of any kind.
The reader assumes the entire risk of accuracy and subsequent use of its contents.