android

Google mocks Epic’s proposed reforms to end Android app market monopoly

android, android app marketplace, Android Apps, anticompetitive behavior, Antitrust law, App Store, epic games, epic games store, gaming, Google, Google Play Store, monopoly, Policy / Ari B / April 12, 2024

Epic Games has filed a proposed injunction that would stop Google from restricting third-party app distribution outside Google Play Store on Android devices after proving that Google had an illegal monopoly in markets for Android app distribution.

Epic is suggesting that competition on the Android mobile platform would be opened up if the court orders Google to allow third-party app stores to be distributed for six years in the Google Play Store and blocks Google from entering any agreements with device makers that would stop them from pre-loading third-party app stores. This would benefit both mobile developers and users, Epic argued in a wide-sweeping proposal that would greatly limit Google’s control over the Android app ecosystem.

US District Court Judge James Donato will ultimately decide the terms of the injunction. Google has until May 3 to respond to Epic’s filing.

A Google spokesperson confirmed to Ars that Google still plans to appeal the verdict—even though Google already agreed to a $700 million settlement with consumers and states following Epic’s win.

“Epic’s filing to the US Federal Court shows again that it simply wants the benefits of Google Play without having to pay for it,” Google’s spokesperson said. “We’ll continue to challenge the verdict, as Android is an open mobile platform that faces fierce competition from the Apple App Store, as well as app stores on Android devices, PCs, and gaming consoles.”

If Donato accepts Epic’s proposal, Google would be required to grant equal access to the Android operating system and platform features to all developers, not just developers distributing apps through Google Play. This would allow third-party app stores to become the app update owner, updating any apps downloaded from their stores as seamlessly as Google Play updates apps.

Under Epic’s terms, any app downloaded from anywhere would operate identically to apps downloaded from Google Play, without Google imposing any unnecessary distribution fees. Similarly, developers would be able to provide their own in-app purchasing options and inform users of out-of-app purchasing options, without having to use Google’s APIs or paying Google additional fees.

Notably, Epic filed its lawsuit after Google removed the Epic game Fortnite from the Google Play Store because Epic tried to offer an “Epic Direct Payment” option for in-game purchases.

“Google must also allow developers to communicate directly with their consumers, including linking from their app to a website to make purchases and get deals,” Epic said in a blog post. “Google would be blocked from using sham compliance programs like User Choice Billing to prevent competing payment options inside an app or on a developer’s website.”

Unsurprisingly, Epic’s proposed injunction includes an “anti-retaliation” section specifically aimed at protecting Epic from any further retaliation. If Donato accepts the terms, Google would be violating the injunction order if the tech giant fails to prove that it is not “treating Epic differently than other developers” by making it “disproportionately difficult or costly” for Epic to develop, update, and market its apps on Android.

That part of the injunction would seem important since, last month, Epic announced that an Epic Games Store was “coming to iOS and Android” later this year. According to Inc, Epic told Game Developers Conference attendees that its app-distribution platform will be the “first ever game-focused, multiplatform store,” working across “Android, iOS, PC and macOS.”

Google mocks Epic’s proposed reforms to end Android app market monopoly Read More »

Thousands of phones and routers swept into proxy service, unbeknownst to users

android, anonymous proxy, Biz & IT, botnets, Phones, routers, Security / Blake Jones / March 26, 2024

ANONYMIZERS ON THE CHEAP —

Two new reports show criminals may be using your device to cover their online tracks.

Dan Goodin – Mar 26, 2024 7: 56 pm UTC

Crooks are working overtime to anonymize their illicit online activities using thousands of devices of unsuspecting users, as evidenced by two unrelated reports published Tuesday.

The first, from security firm Lumen Labs, reports that roughly 40,000 home and office routers have been drafted into a criminal enterprise that anonymizes illicit Internet activities, with another 1,000 new devices being added each day. The malware responsible is a variant of TheMoon, a malicious code family dating back to at least 2014. In its earliest days, TheMoon almost exclusively infected Linksys E1000 series routers. Over the years it branched out to targeting the Asus WRTs, Vivotek Network Cameras, and multiple D-Link models.

In the years following its debut, TheMoon’s self-propagating behavior and growing ability to compromise a broad base of architectures enabled a growth curve that captured attention in security circles. More recently, the visibility of the Internet of Things botnet trailed off, leading many to assume it was inert. To the surprise of researchers in Lumen’s Black Lotus Lab, during a single 72-hour stretch earlier this month, TheMoon added 6,000 ASUS routers to its ranks, an indication that the botnet is as strong as it’s ever been.

More stunning than the discovery of more than 40,000 infected small office and home office routers located in 88 countries is the revelation that TheMoon is enrolling the vast majority of the infected devices into Faceless, a service sold on online crime forums for anonymizing illicit activities. The proxy service gained widespread attention last year following this profile by KrebsOnSecurity.

“This global network of compromised SOHO routers gives actors the ability to bypass some standard network-based detection tools—especially those based on geolocation, autonomous system-based blocking, or those that focus on TOR blocking,” Black Lotus researchers wrote Tuesday. They added that “80 percent of Faceless bots are located in the United States, implying that accounts and organizations within the US are primary targets. We suspect the bulk of the criminal activity is likely password spraying and/or data exfiltration, especially toward the financial sector.”

The researchers went on to say that more traditional ways to anonymize illicit online behavior may have fallen out of favor with some criminals. VPNs, for instance, may log user activity despite some service providers’ claims to the contrary. The researchers say that the potential for tampering with the Tor anonymizing browser may also have scared away some users.

The second post came from Satori Intelligence, the research arm of security firm HUMAN. It reported finding 28 apps available in Google Play that, unbeknownst to users, enrolled their devices into a residential proxy network of 190,000 nodes at its peak for anonymizing and obfuscating the Internet traffic of others.

ProxyLib, the name Satori gave to the network, has its roots in Oko VPN, an app that was removed from Play last year after being revealed using infected devices for ad fraud. The 28 apps Satori discovered all copied the Oko VPN code, which made them nodes in the residential proxy service Asock.

The researchers went on to identify a second generation of ProxyLib apps developed through lumiapps[.]io, a software developer kit deploying exactly the same functionality and using the same server infrastructure as Oko VPN. The LumiApps SDK allows developers to integrate their custom code into a library to automate standard processes. It also allows developers to do so without having to create a user account or having to recompile code. Instead they can upload their custom code and then download a new version.

“Satori has observed individuals using the LumiApps toolkit in the wild,” researchers wrote. “Most of the applications we identified between May and October 2023 appear to be modified versions of known legitimate applications, further indicating that users do not necessarily need to have access to the applications’ source code in order to modify them using LumiApps. These apps are largely named as ‘mods’ or indicated as patched versions and shared outside of the Google Play Store.”

The researchers don’t know if the 190,000 nodes comprising Asock at its peak were made up exclusively of infected Android devices or if they included other types of devices compromised through other means. Either way, the number indicates the popularity of anonymous proxies.

People who want to prevent their devices from being drafted into such networks should take a few precautions. The first is to resist the temptation to keep using devices once they’re no longer supported by the manufacturer. Most of the devices swept into TheMoon, for instance, have reached end-of-life status, meaning they no longer receive security updates. It’s also important to install security updates in a timely manner and to disable UPnP unless there’s a good reason for it remaining on and then allowing it only for needed ports. Users of Android devices should install apps sparingly and then only after researching the reputation of both the app and the app maker.

Thousands of phones and routers swept into proxy service, unbeknownst to users Read More »

Apple partly halts Beeper’s iMessage app again, suggesting a long fight ahead

android, Apple, beeper, beeper mini, encrypted chat, Encryption, iMessage, imessages, iOS, IPhone, Tech / Ryan Harris / December 14, 2023

Beeper group chat illustration — Enlarge / The dream of everybody having blue bubbles, and epic photos of perfectly digestible meals, as proffered by Beeper.

Beeper

A friend of mine had been using Beeper’s iMessage-for-Android app, Beeper Mini to keep up on group chats where she was the only Android user. It worked great until last Friday, when it didn’t work at all.

What stung her wasn’t the return to being the Android interloper in the chats again. It wasn’t the resulting lower-quality images, loss of encryption, and strange “Emphasized your message” reaction texts. It was losing messages during the outage and never being entirely certain they had been sent or received. There was a gathering on Saturday, and she had to double-check with a couple people about the details after showing up inadvertently early at the wrong spot.

That kind of grievance is why, after Apple on Wednesday appeared to have blocked what Beeper described as “~5% of Beeper Mini users” from accessing iMessages, both co-founder Eric Migicovksy and the app told users they understood if people wanted out. The app had already suspended its plans to charge customers $1.99 per month, following the first major outage. But this was something more about “how ridiculously annoying this uncertainty is for our users,” Migicovsky posted.

Fighting on two fronts

But Beeper would keep working to ensure access and keep fighting on other fronts. Migicovsky pointed to Epic’s victory at trial against Google’s Play Store (“big tech”) as motivation. “We have a chance. We’re not giving up.” Over the weekend, Migicovsky reposted shows of support from Senators Elizabeth Warren (D-Mass.) and Amy Klobuchar (D-Minn.), who have focused on reigning in and regulating large technology company’s powers.

Apple previously issued a (somewhat uncommon) statement about Beeper’s iMessage access, stating that it “took steps to protect our users by blocking techniques that exploit fake credentials in order to gain access to iMessage.” Citing privacy, security, and spam concerns, Apple stated it would “continue to make updates in the future” to protect users. Migicovsky previously denied to Ars that Beeper used “fake credentials” or in any way made iMessages less secure.

I asked Migicovsky by direct message if, given Apple’s stated plan to continually block it, there could ever be a point at which Beeper’s access was “settled,” or “back up and running,” as he put it in his post on X (formerly Twitter). He wrote that it was up to the press and the community. “If there’s enough pressure on Apple, they will have to quit messing with us.” “Us,” he clarified, meant both Apple’s customers using iMessage and Android users trying to chat securely with iPhone friends.

“That’s who they’re penalizing,” he wrote. “It’s not a Beeper vs. Apple fight, it’s Apple versus customers.”

Apple partly halts Beeper’s iMessage app again, suggesting a long fight ahead Read More »

20 Types of Android Apps You Can Replace With the Google App

android, Android Apps, Android Tips, Google Apps, Google Assistant, Highlights / Ryan Harris / December 7, 2022

internal/modules/cjs/loader.js: 905 throw err; ^ Error: Cannot find module ‘puppeteer’ Require stack: – /home/760439.cloudwaysapps.com/jxzdkzvxkw/public_html/wp-content/plugins/rss-feed-post-generator-echo/res/puppeteer/puppeteer.js at Function.Module._resolveFilename (internal/modules/cjs/loader.js: 902: 15) at Function.Module._load (internal/modules/cjs/loader.js: 746: 27) at Module.require (internal/modules/cjs/loader.js: 974: 19) at require (internal/modules/cjs/helpers.js: 101: 18) at Object. (/home/760439.cloudwaysapps.com/jxzdkzvxkw/public_html/wp-content/plugins/rss-feed-post-generator-echo/res/puppeteer/puppeteer.js:2: 19) at Module._compile (internal/modules/cjs/loader.js: 1085: 14) at Object.Module._extensions..js (internal/modules/cjs/loader.js: 1114: 10) at Module.load (internal/modules/cjs/loader.js: 950: 32) at Function.Module._load (internal/modules/cjs/loader.js: 790: 12) at Function.executeUserEntryPoint [as runMain] (internal/modules/run_main.js: 75: 12) code: ‘MODULE_NOT_FOUND’, requireStack: [ ‘/home/760439.cloudwaysapps.com/jxzdkzvxkw/public_html/wp-content/plugins/rss-feed-post-generator-echo/res/puppeteer/puppeteer.js’ ]

20 Types of Android Apps You Can Replace With the Google App Read More »

The Pixel Feature Drop for December Is Out Now. Here’s Everything That’s New

android, Android 13, Android Wear, Google Pixel, Highlights / Blake Jones / December 6, 2022

The Pixel Feature Drop for December Is Out Now. Here’s Everything That’s New Read More »

The New Doogee S98 With Dual Screen And Night Vision Set to Launch On March 28th

android, doogee, Highlights, Phone Tech, s98, smartphone / Ryan Harris / March 18, 2022

March 18, 2022• byJeremy Pearl

The new S98 rugged phone was announced last month by DOOGEE. The company will launch the dual-screen rugged phone on March 28th on AliExpress and Doogemall (the company’s official shopping platform).

Doogee S98 sports a unique dual-screen design. The display on the back is round like the one on the Huawei P50 pocket but comes with a bezel to complete the smartwatch look. The 1.1-inch display allows great freedom of customization to achieve a more personalized style. For e.g, you can set a special picture as the background picture and use colors in the picture to customize a theme for the display. It is convenient for music control, checking the time, battery levels, and notifications without having to flip the phone over.

Watch Video: https://www.youtube.com/watch?v=pHBAVysmS8A

[The rear display borrows from the classic round shape of the wristwatch. Doogee S98 combines the 2 awesome worlds of smartphones and smartwatches into one]

On the back of the phone, there is also a triple camera setup, a 64MP main camera, an 8MP wide-angle camera, and the most interesting of the set, a 20MP night vision camera. The night vision camera allows you to capture and record videos in pitch-black environments. Thanks to the 2 infrared lights on the side, a clear picture is almost always guaranteed.

Under the hood, MediaTek helio G96 runs the show. The octa-core processor is designed for gaming which means faster performance. Paired with 8GB RAM and 256GB memory, expect smooth performance without lags.

The battery on this beast is a 6000mAh battery capable of carrying you 2-3 days of active use. It comes with a 33W fast charger and supports a 15W wireless charger.

The main screen is a 6.3” FHD+ corning gorilla glass-protected display. It will run Android 12 out of the box which brings a host of advantages on the security and optimization front. It also comes with a fingerprint scanner and a custom button on either side of the phone. The features are completed with NFC, 4 navigational satellite support, toolkit, custom button, side-mounted fingerprint scanner, and many more.

Passing both IP68 and IP69K certifications with flying colors, S98 is waterproof from a depth of 1.5m and drop-proof from a height of 1.5m. It also breezed past the MIL-STD-810G tests, which means it can be used in the most extreme weather conditions.

Doogee S98’s global launch has been booked for March 28. Between March 28th and April 1st, it will be sold at a discounted price of $239 on AliExpress. After which, it will return to its original price of $339. But, if you want a free S98, Doogee is giving away 4 of them. To throw your hat in the ring, check the official S98 page for more details on the giveaway.

(Visited 3 times, 3 visits today)

android doogee s98 smartphone

Last modified: March 18, 2022

About the Author: Jeremy Pearl

Jeremy is the Consumer Tech Reporter at TheCESBible.com

The New Doogee S98 With Dual Screen And Night Vision Set to Launch On March 28th Read More »