Twitter’s Authentication Has Vulnerabilities

Twitter’s SMS-based, two-factor authentication feature could be abused to lock users who have not enabled it for their accounts if attackers gain access to their log-in credentials, according to researchers from Finnish antivirus vendor F-Secure.

Twitter introduced two-factor authentication last week as an optional security feature in order to make it harder for attackers to hijack users’ accounts even if they manage to steal their usernames and passwords. If enabled, the feature introduces a second authentication factor in the form of secret codes sent via SMS.

According to Sean Sullivan, a security advisor at F-Secure, attackers could actually abuse this feature in order to prolong their unauthorized access to those accounts that don’t have two-factor authentication enabled. The researcher first described the issue Friday in a blog post.

An attacker who steals someone’s log-in credentials, via phishing or some other method, could associate a prepaid phone number with that person’s account and then turn on two-factor authentication, Sullivan said Monday. If that happens, the real owner won’t be able to recover the account by simply performing a password reset, and will have to contact Twitter support, he said.

This is possible because Twitter doesn’t use any additional method to verify that whoever has access to an account via Twitter’s website is also authorized to enable two-factor authentication.

When the two-factor authentication option called “Account Security” is first enabled on the account settings page, the site asks users if they successfully received a test message sent to their phone. Users can simply click “yes,” even if they didn’t receive the message, Sullivan said.

Instead, Twitter should send a confirmation link to the email address associated with the account for the account owner to click in order to confirm that two-factor authentication should be enabled, Sullivan said.

As it is, the researcher is concerned that this feature could be abused by determined attackers like the Syrian Electronic Army, a hacker group that recently hijacked the Twitter accounts of several news organizations, in order to prolong their unauthorized access to compromised accounts.

Some security researchers already expressed their belief that Twitter’s two-factor authentication feature in its current implementation is impractical for news organizations and companies with geographically dispersed social media teams, where different employees have access to the same Twitter account and cannot share a single phone number for authentication.

Twitter did not immediately respond to a request for comment regarding the issue described by Sullivan.

Source

Is This A Mobile First World?

Judging from the number of people engrossed in activities with their smartphones on the sidewalk, in their cars and in public places, mobile seems to have stolen our attention away from the wired Internet and traditional TV.

However, there is a ways to go before mobile platforms become the primary place where consumers turn for entertainment and getting things done, players at  CTIA Wireless trade show said.

Nokia Siemens Networks announced new capabilities in its network software to make video streams run more smoothly over mobile networks. Among other things, the enhancements can reduce video stalling by 90 percent, according to the company. But even Sandro Tavares, head of marketing for NSN’s Mobile Core business, sees “mobile-first” viewing habits as part of the future.

“Now that the networks are providing a better capacity, a better experience with mobile broadband, mobile-first will come,” Tavares said. “Because the experiences they have with the devices are so good, these devices … start to be their preferred screen, their first screen.

“This is a trend, and this is something that will not change,” Tavares said. But he thinks it’s too early to build networks assuming consumers will turn to tablets and phones as their primary sources of entertainment. “Do you have to be prepared for mobile-first now? Probably not. You have to be able to keep the pace.”

For AT&T, mobile-first is a top priority for its own internal apps, ensuring employees can do their jobs wherever they are, said Kris Rinne, the carrier’s senior vice president of network technologies. But to make it possible over the network, a range of new technologies and relationships may have to come together, she said.

For example, giving the best possible performance for streaming video and other uses of mobile may require steering traffic to the right network if both cellular and Wi-Fi are available. AT&T is developing an “intelligent network selection” capability to do this, Rinne said. When AT&T starts to deliver voice over LTE, it will stay on the cellular network — at least in the early days — because the carrier has more control over quality of service on that system, she said.

Other issues raised by mobile-first include security of packets going over the air and rights for content that subscribers are consuming primarily on mobile devices instead of through TV and other traditional channels, Rinne said.

Source

Lenovo Soars

PC sales in China and high growth in smartphones sales helped boost Lenovo’s net profit for its fiscal fourth quarter by 90% year-over-year.

For the quarter ended March 31, Lenovo’s net profit was $127 million, the company said on Thursday. Revenue shattered records and was at $7.8 billion, growing 4% from the same period last year.

In Lenovo’s home market of China, the company had an operating margin of 4.9%, an increase of 8% year-over-year. The company also saw continued profitability in its mobile devices business, which makes up 9% of its overall sales. At the end of the quarter, Lenovo’s smartphone shipments were up 206% year-over-year.

Globally, PC shipments were down 13.9% year-over-year in the quarter, the market’s steepest decline since research firm IDC began tracking the market in 1994. Lenovo itself posted flat year-over-year PC shipment growth in the period.

Smartphone and tablet popularity have hurt PC sales, according to analysts. Computers running Microsoft’s Windows 8 have also failed to drum up consumer interest in the previous two quarters.

Source

Lenovo, however, has managed to weather the slowdown by taking advantage of the Chinese PC market, where it has an over 30% market share. Close to half of the company’s revenue comes from the country, now the world’s largest PC market.

The company is now close to surpassing leading PC vendor HP for the top spot. The company had a 15.3% share of the market in this year’s first quarter, while HP had a 15.7% share.

But the Chinese PC maker also plans to focus more of its investment on tablets, smartphones and enterprise hardware, the company’s CEO Yang Yuanqing said in a statement. Earlier this year, Lenovo also reorganized its operations to sharpen the company’s branding and compete better in high-end products.

For the current fiscal year, Lenovo aims to ship 50 million smartphones, up from 30 million last year, Yang said Thursday in an earnings call. It aims to ship 10 million tablets, a five-fold increase from the previous fiscal year.

Most of Lenovo’s smartphone sales come from China, but the company has also begun selling handsets in the emerging markets of Russia, India, Indonesia, the Philippines and Vietnam. In addition, Lenovo is preparing to bring its smartphones to the U.S. and European markets, Yang said, without saying when.

Is Yahoo Really Back?

Yahoo has once again made the list as one of the world’s 100 most valuable brands.

The Internet company nabbed the 92nd spot in the annual list of global companies from multiple industries including technology, retail and service, released Tuesday by BrandZ, a brand equity database. The ranking gave Yahoo a “brand value” of US$9.83 billion, which is based on the opinions of current and potential users as well as actual financial data.

Apple occupied the number-one position on the list, with a brand value of $185 billion. Google was number two, with a value of roughly $114 billion.

The BrandZ ranking, commissioned by the advertising and marketing services group WPP, incorporates interviews with more than 2 million consumers globally about thousands of brands along with financial performance analysis to compile the list. Yahoo last appeared on the list in 2009 at number 81.

Yahoo’s inclusion on the 2013 list comes as the Internet company works to reinvent itself and win back users. Previously a formidable player in Silicon Valley, the company has struggled in recent years to compete against the likes of Google, Facebook and Twitter.

Improving its product offerings on mobile has been a focus. New mobile apps for email and weather have been unveiled, along with a new version of the main Yahoo app, featuring news summaries generated with technology the company acquired when it bought Summly.

Most notably, Monday the company announced it is acquiring the blogging site Tumblr for $1.1 billion in cash. Big changes to its Flickr photo sharing service were also announced.

Yahoo’s rebuilding efforts have picked up steam only during the last several months, but the 2013 BrandZ study was completed by March 1.

However, last July’s appointment of Marissa Mayer as CEO likely played a significant role in the company’s inclusion in the ranking, said Altimeter analyst Charlene Li. “Consumer perception has gone up since then,” she said.

“Yahoo’s leadership has a strong sense of what they want to do with the brand,” she added.

Yahoo’s 2012 total revenue was flat at $4.99 billion. However, after subtracting advertising fees and commissions paid to partners, net revenue was up 2 percent year-on-year.

Source

Yahoo On A Buying Spree

Yahoo has purchased a mobile gaming company, Loki Studios, taking its total acquisitions this month to four.

The company said over the weekend it welcomed Loki, Astrid, GoPollGo and MileWise to its growing mobile team. “We recently added 22 entrepreneurs to our growing mobile team,” the company said in a Twitter message in a possible reference to some of the people from the four companies who have moved to Yahoo.

Loki’s flagship application is its location-aware game, Geomon. “We are thrilled to be joining the exceptional folks at Yahoo!. We believe fully in their commitment to creating outstanding mobile products,” the Loki team said on their website.

Earlier in the week, Yahoo also acquired GoPollGo, a social polling tool. The company’s founder and team said they were moving to Yahoo, and would no longer be supporting their offerings.

It is not clear whether Yahoo has bought all these companies for their products and technology or just to get their experienced staff in the area of mobile as it tries to build up its own mobile capabilities. The way the services are being shut down suggests that their user base did not particularly interest Yahoo. The company could not be immediately reached for comment.

Source

Will SoftBank Raise The Stakes?

SoftBank Corp President Masayoshi Son may get a less than enthusiastic reception when he comes to the United States this week to meet Sprint Nextel Corp’s major shareholders, as he tries to drum up support for the Japanese company’s proposed takeover of the No. 3 U.S. wireless service provider.

SoftBank’s billionaire founder, who proposed a $20 billion deal for a 70 percent stake in the U.S. wireless carrier, said on Tuesday that he would discuss the deal with shareholders in a bid to fight off rival Dish Network, a U.S. satellite TV provider, which offered Sprint a $25.5 billion bid.

The executive for the Japanese mobile operator may have a tough time selling the deal, as several shareholders have told Reuters that SoftBank would need to raise its bid in order to win their vote at Sprint’s June 12 shareholder meeting.

Two big Sprint shareholders, Paulson & Co and Omega Advisors, have publicly said the Dish offer looks better than SoftBank’s. Other shareholders said on Tuesday that they would go to meet Son during his trip but they were skeptical about his arguments against Dish.

While Dish’s offer would provide more cash upfront to shareholders, Son has argued that Dish would not be good for the company as it would require Sprint to take on a heavy debt load. He also promises a July 1 close for the deal and warned that Dish regulatory approval may not come until 2014.

Robert Lynch, the director of research for Westchester Capital Management, which owned over 14 million shares in Sprint at the end of December, said that the prospect of a quicker deal close would not be enough to win over his company’s vote.

“We think right now that Dish has a better offer on the table. We think SoftBank’s going to have to improve their offer,” Lynch said, noting that SoftBank’s comments about the prospective debt leverage from a Dish deal were overdone.

“We think the leverage is manageable. We think there are synergies here. While raising the leverage is something we looked at we think its not as big of a obstacle as SoftBank is saying,” Lynch said.

A big Sprint investor who asked not to be named said they were happy to meet with Son while he is in the United States but that they were hoping to convince him to raise his bid.

“If Mr. Son wants to own Sprint he will have to raise his bid,” said the person from a top 25 Sprint shareholder who did not want to be quoted by name ahead of the meeting.

Source

SOA’s New API Goes To The Cloud

SOA Software has launched an application programming interface (API) gateway today that allows businesses to expose their API’s with a built-in cloud based developer community, helping to grow their services and make it quicker for them to get up and running.

The firm’s CTO Alistair Farquharson said the API Gateway is unique due to it being a new concept in API and SOA management, aiming to “deliver new advantages in the application-level security space”.

“The new API Gateway provides monitory, security, and more uniquely, a developer community as well, so kind of a turnkey approach to an API gateway where a customer can buy that product, get it up and running, expose their API and expose the developer community to the outside world,” Farquharson said.

“[It will] support and manage the porting of mobile applications or web apps or B2B partnerships.”

Farquharson explained that there are three main components within the Gateway, which SOA Software has termed a “unified services gateway”, including a runtime component, a policy manager, and a developer community.

The runtime component handles the message traffic, whereas the policy manager component is capable of managing a range of different policies, such as threat protection, authentication, authorisation, anti-virus, monitorin, auditing, logging, for example.

“The whole objective here is to get a customer up and running with API’s as quickly as possible to meet some kind of a business need that they have, whether that’s mobile an application initiative or a web application, integration or syndication,” Farquharson added.

The third component is the API’s cloud-based “developer community”, which exposes an organisation to the outside world so developers can come take a look at its API, read its documentation, and see what APIs it has to figure out how to interact with them.

It’s this component that sets SOA Software’s Gateway apart form other firms doing similar appliances on the market, claims Farquharson.

“It essentially becomes the developer site for your organisation, with it all running on a single appliance which is rather unique,”  he added.

“The interesting thing about the gateway is that it does API’s as well as services [that are] needed for mobile devices so you have old and the new  encapsulated in the single appliance, which is very important to our customers.”

The developer community is offered through the API as a service, “like the Salesforce of APIs”, Farquharson said.

“Developers can go there and build their community and it provides them with high level service and availability and saglobla infrastructure and leverage the strength of their community to get themselves going.”

Source

Did Apple Trick Sharp?

Sharp is really regretting its dependence on Apple as its main customer.

While it made sense at the time to be extremely pleased when Apple sucked up most of its capacity with screens for its iPhone and iPad, now the tide has turned the outfit is reporting a bigger than forecast loss. Sharp is now suffering from low output at its factories and forced to write off excess capacity.

The company had a $5.1 billion net loss for the year which is much worse than it predicted. At the start of the year, Sharp was forced to curtail production of 9.7-inch screens for Apple’s iPad. That has stepped up the urgency for Sharp to find new customers and uses for its leading-technology displays and may make it harder for the company to convince investors and lenders it remains a viable company.

Sharp will officially announce its results for latest business year on May 14. To make matters worse the company is also taking a charge to put aside cash for possible fines from a display price-fixing investigation in Europe, the sources said. Sharp in October received a $4.4 billion bailout from banks including Mizuho Financial Group and Mitsubishi Financial Group in return for mortgaging nearly all its factories and offices in Japan and pledging to cut 10,000 jobs.

Source

Qualcomm Sticks With Windows RT

Tim McDonough, Vice President, Marketing at Qualcomm, was Qualcomm´s commitment to Windows RT. Ever since Microsoft announced Windows RT, ARM supporters had high hopes and Windows RT has yet to live up to some.

Tim confirmed Qualcomm´s commitment to Windows RT and future releases, saying “we are here for the long run”. He describes the partnership as the beginning of a long journey and of course Qualcomm is going to continue rolling out chips that will run great with Windows RT.

Qualcomm mentioned that Samsung ATIV and Dell XPS 10, both of which use Qualcomm’s S4 dual-core APQ8060A chips, run really nice. Tim told us that he is a real fan of both devices and that he is currently using one of them.

We also learned that Snapdragon 600, the one used in the HTC One and some versions of Samsung’s Galaxy S4, is 40 per cent faster than the S4 Pro, adding that Adreno 320 graphics core is significantly faster than the Adreno 225 used in the S4 APQ8060A chip. Another number we got is that the Adreno 330 is up to four times faster than the 225, which is a huge leap forward. Let’s not forget that Snapdragon 800, which is up to 75 per cent faster than Snapdragon S4 Pro, is also coming in mid-year, second half of 2013. The 800 will be Qualcomm’s first chip with Adreno 330 graphics.

One can easily conclude that there should be some Snapdragon 600 and 800 Windows RT convertible tablets at some point in the future. To stay on the safe side, Qualcomm just confirmed that new and exciting things are coming in the next months and quarter and they are Windows based.

We have to notice that most people in the tablet world get really excited talking about convertible tablets in all shapes and sizes, as the physical keyboard is definitely an accessory you want to have.

Source

Microsoft Looks Into Smart Watches

Microsoft is developing designs for a touch-enabled smart watch, joining a number of other large competitors like Samsung Electronics and Apple who are said to be working on similar devices, according to a recent report.

Executives at suppliers to Microsoft told The Wall Street Journal that the company was sourcing components for the prototype of what could potentially be a “watch-style device.”

Microsoft has, for example, requested 1.5-inch displays from component makers for the prototype, an executive at a component supplier told the newspaper. It is unclear whether the company will decide to go ahead with the watch, the newspaper added.

Microsoft could not be immediately reached for comment.

A large number of vendors are looking at new product categories beyond smartphones and tablets.

This isn’t the first time, however, that Microsoft may be looking at watches as a product. It launched a smart wrist watch around a concept called Smart Personal Object Technology it unveiled in 2002, but withdrew it after a lackluster performance.

The Redmond, Wash., company is seeing its key PC market under threat from smartphones and tablets, and the failure of its new Windows 8 operating system to boost sales significantly. IDC said last week that first quarter PC shipments totaled 76.3 million units, down 13.9% compared to the same quarter last year. (The decline was worse than the 7.7% previously forecast by the analyst firm, and the market could be headed into further contraction, the research firm added.

Source

« Previous Page — Next Page »