[complete research paper at: http://www.cl.cam.ac.uk/~rja14/Papers/fr_most15.pdf]<http://www.cl.cam.ac.uk/~rja14/Papers/fr_most15.pdf%5D>
…from:
http://www.engadget.com/2015/05/22/android-factory-reset-flaw/
Researchers find Android factory reset faulty and reversible
by Mariella Moon<http://www.engadget.com/about/editors/mariella-moon/> | @mariella_moon<http://twitter.com/mariella_moon> | May 22nd 2015 at 11:10 pm
[cid:5E25E452-1ADD-4266-8E6F-1FA6D57AB041]<http://www.engadget.com/2015/05/22/android-factory-reset-flaw/>
Android's factory reset <http://www.engadget.com/2012/05/29/google-wallet-factory-reset-problem/> function isn't as effective as we'd all like it to be, according to a team of Cambridge University researchers. The group estimates that as many as 500 to 630 million Android devices might not be capable of completely wiping the data saved in their internal disks and SD cards. They came to that conclusion after testing 21 devices<http://www.cl.cam.ac.uk/~rja14/Papers/fr_most15.pdf> running Android 2.3 to 4.3 from five different manufacturers that already went through factory reset. During their tests, they were able to recover at least part of the data stored in each sample device -- even if it was protected with full-disk encryption.
The data they recovered includes contacts, images and videos, texts, emails and log-ins for third-party apps like Facebook and WhatsApp. They were also able to retrieve the master token needed to access all Google user data in 80 percent of the phones. There are many possible reasons for reset failure: according to the researchers, manufacturers sometimes don't load a phone's software with the drivers needed to completely wipe its internal disk or SD card add-on. Also, flash drives are notoriously difficult to erase.
It's unclear at the moment if Google or any of the manufacturers whose phones were tested are doing anything about this issue. But if you really want to protect your info before tossing, selling or giving away an old phone, use the most complicated password you can whip up<http://www.engadget.com/discuss/do-you-use-a-password-manager-1q5j/>... or, you know, go to town on it with a hammer.
Hide Comments 37Comments
…from:
http://www.apple.com/pr/library/2015/05/11Apple-Announces-New-Environmental…
Summary
- BEIJING—May 11, 2015
- Apple starting multi-year effort to achieve net-zero impact by Apple Inc. on world’s supply of sustainable pulp, paper, wood products as well as to use 100% renewable energy in worldwide operations
- working with World Wildlife Fund
- working to bring renewable energy to manufacturing facilities in China after announcing solar project in Sichuan province which will generate more energy than needed for Apple’s Chinese 19 corporate offices and 22 retail stores
- partnering with Leshan Electric, Sichuan Development Holding Co, Tianjin Tsinlien Investement Holding Co., Tianjin Zhonguan Semiconductor, and SunPower Corporation to construct two 20 Megawatt solar farms
- solar projects designed to minimize ecological impact and protect the grasslands that support the yak population, which is also important to the local economy
- Tim Cook, Apple CEO, “it’s important work that has to happen...It’s a responsibility we accept."
…from:
http://www.macworld.com/article/2919292/apple-security-program-mackeeper-ce…
“Executive Summary”
- MacKeeper makes “anti-virus” software which it advertises using 60 million ad impressions a month
- a class-action suit - near $2M settlement - was brought against MacKeeper contending that MacKeeper software and advertising falsely flagged security and performance problems in order to coax consumers into buying the full version
- AV Comparatives, an Austrian company that evaluates antivirus programs, recently tested MacKeeper on a fresh, fully installed and patched version of OS X Yosemite. MacKeeper marked the system as having “serious” problems stemming from more than 500 MB of “junk” files.
- the free version fixed 85 files and indicated that a further 1,500 files could be fixed if the full version of MacKeeper was purchased
- many of the tools in the MacKeeper bundle, which includes an antivirus (AV) scanner and 15 other utilities, are already in OS X or are available for free
- MacWorld (and other Internet sites) have instructions on uninstalling MacKeeper (see link in article below)
MacKeeper celebrates a difficult birthday under the cloud of a class action lawsuit
[mackeeper 1]
MacKeeper<http://mackeeper.com/>, a utility and security program for Apple computers, celebrated its fifth birthday in April. But its gift to U.S. consumers who bought the application may be a slice of a $2 million class-action settlement.
Released in 2010, MacKeeper has been dogged by accusations that it exaggerates security threats in order to convince customers to buy. Its aggressive marketing has splashed MacKeeper pop-up ads all over the web.
The program was originally created by a company called ZeoBIT<http://zeobit.com/> in Kiev, Ukraine. The country—full of young, smart programmers—has long been a hub for lower-cost software development and outsourcing.
The class-action suit<https://www.documentcloud.org/documents/2071537-zeobit-class-action-complai…>, filed in May 2014 on behalf of Pennsylvania resident Holly Yencha, contends that MacKeeper falsely flagged security and performance problems in order to coax consumers into paying $39.95 for the full version. The suit sought $5 million in damages.
It is close to being settled, according to recent documents filed in U.S. District Court for the Western District of Pennsylvania.
Under the settlement terms<https://www.documentcloud.org/documents/2071538-zeobit-class-action-settlem…>, ZeoBIT would put $2 million into a fund for those who want a refund, but admit no fault, which is customary in such settlements. It has yet to be approved by a judge.
MacKeeper was wildly lucrative for ZeoBIT. As many as 650,000 consumers bought it in the U.S., according to documents filed in the suit. At $39.95 per copy, ZeoBIT would have made $26 million in revenue in the U.S. alone.
New owners. Same problems?
In April 2013, ZeoBIT, which now lists its headquarters as Sunnyvale, California, sold MacKeeper to a company called Kromtech Alliance Corp. Kromtech was closely affiliated with ZeoBIT in Ukraine, and many employees of ZeoBIT transferred to the company, which lists its headquarters as Cologne, Germany.
[mackeeper 2]<http://images.techhive.com/images/article/2015/05/mackeeper-2-100583591-ori…>
MacKeeper evaluates a computer’s health as “serious” even if it is a freshly installed and patched version of OS X Yosemite. (Click to enlarge.)
An effort has been under way by Kromtech to rehabilitate the image of MacKeeper to keep the franchise going. But concerns remain over how MacKeeper diagnoses a computer’s health.
AV Comparatives<http://www.av-comparatives.org/>, an Austrian company that evaluates antivirus programs, recently tested the latest trial version of MacKeeper at the request of IDG News Service. It was installed on a fresh, fully patched version of OS X Yosemite, Apple’s latest operating system. In theory, the system should have had no problems.
MacKeeper warned in red in several places with exclamation points that the computer’s condition was “serious” due to more than 500MB of “junk” files.
After fixing 85 files for free, it warned more than 1,500 need cleaning—but only if the full version of the program was purchased. Those that supposedly need cleaning up included language files.
[mackeeper 3]<http://images.techhive.com/images/article/2015/05/mackeeper-3-100583592-ori…>
MacKeeper justifies its “serious” evaluation of a computer saying it is not in danger, but contends that junk files could eventually affect its performance. (Click to enlarge.)
Jeremiah Fowler, MacKeeper’s U.S.-based spokesman, said that Kromtech has toned down its warnings, but defended the program’s evaluations.
“Sure, it may not be this massive amount of data, but these are things that you’ll never use,” Fowler said. “You’ll probably never activate Chinese.”
Fowler pointed out that there is a pop-up window with more information on one of the warning screens. That message justified the warnings and said MacKeeper found “a relatively large amount of unneeded files” that could eventually affect a computer’s performance or security.
Ad behavior
MacKeeper has also taken heat for aggressive and pervasive advertising. Fowler said the company buys upwards of 60 million ad impressions a month, making it one of the largest buyers of web traffic aimed at Mac users. MacKeeper has even posted a statement<http://mackeeper.com/why> on its website to answer why people see its ads so often.
It has also had issues with some affiliate advertisers, who were attracted by the 50 percent commissions<https://affiliates.mackeeper.com/faq#What> Kromtech pays for sales of MacKeeper.
Some affiliates have wrapped MacKeeper ads into advertising software programs, or adware. It’s a category of much-loathed tools that offer some functionality such as search but are primarily designed to deliver ads.
Thomas Reed, who writes The Safe Mac<http://www.thesafemac.com/> blog, discovered the reach of MacKeeper affiliates. Reed developed a program called AdwareMedic<http://www.adwaremedic.com/index.php>, which removes adware from Macs. The program is free.
Reed wrote<http://www.thesafemac.com/ongoing-mackeeper-fraud/> in November that he found an adware program called Downlite that, if installed on a Mac, would redirect someone to MacKeeper’s website site if they tried to download AdwareMedic.
Kromtech has taken steps to reign in unethical affiliates, Fowler said. More than 80 percent of ZeoBIT’s affiliate agreements have since been suspended, and the company’s new compliance department closely vets new ones.
Still, the bad practices of former affiliates caused damage to MacKeeper’s reputation, Fowler said.
[mackeeper icon]
MacKeeper wants to be a one-stop shop, but its subscription pricing includes many unnecessary utilities already included in OS X or easily found for free.
These days, MacKeeper has gone to a subscription-based pricing model rather than a $39.95 one-off payment. It costs $7.95 a month in the U.S. for the premium, year-long plan. Its latest feature is offering phone support from Apple-certified technicians, which it calls Human Inside.
On its website, MacKeeper assigns a value to each of its tools, contending the bundle would be worth $510 if bought individually.
“Save up to 97 percent,” it says.
But many of the tools in the software bundle, which includes an antivirus (AV) scanner and 15 other utilities, are already in OS X or available for free.
For example, MacKeeper licenses technology in its AV scanner from Germany-based Avira, which offers its Mac security product<http://www.avira.com/en/free-antivirus-mac> for free. On its pricing page, MacKeeper estimates the value of an AV scanner at $79.
Curiously, MacKeeper doesn’t offer updates or what’s called real-time protection—where files that are downloaded or opened are scanned for malware—unless the customer buys its “premium” version, according to Dennis Technology Labs<http://www.dennistechnologylabs.com/>, which also tested MacKeeper for IDG News Service.
Avira’s free Mac AV product “includes updates and real-time protection,” the labs noted.
Other MacKeeper tools already have an equivalent in OS X. MacKeeper’s file shredder tool, listed as a $10 value, replicates “secure empty trash,” built into OS X. The “default apps” tool is similar to Apple’s Finder.
When asked about the duplication, Fowler contended that MacKeeper is designed to provide one interface for utilities for less technical people who aren’t familiar with Apple computers. For what it’s worth, Macworld has two how-tos on uninstalling MacKeeper<http://www.macworld.com/article/2861435/how-to-uninstall-mackeeper-from-you…> from your Mac and squashing its popups<http://www.macworld.com/article/2861868/how-to-remove-mackeeper-part-ii-the…> too.
Kromtech continues to market the program aggressively and participated<http://www.macworld.com/article/2026792/expo-notes-mackeeper-takes-a-more-s…> at the Macworld conference last year and the Consumer Electronics Show in January in Las Vegas. Over five years, 20 million copies of MacKeeper have been sold, Kromtech claims.
But ZeoBIT’s proposed settlement over MacKeeper doesn’t include Kromtech as a released party, which means it could be targeted by future lawsuits.
Edelson PC, a technology focused law firm that filed the suit, said it could not comment.