Card Skimming


Malwarebytes researchers have highlighted a new phishing technique that attackers are exploiting to target visitors of several websites by leveraging on modified favicon to inject e-skimmers and steal credit card information.

The technique consists of using similar characters to dupe unsuspecting users, according to the security researchers, which characters could be from a different language or simply the capitalization of the letter 'i' to make it look like lowercase 'l'.

This is refered to as internationalized domain name (IDN) homograph attack, and it has been used by Magecart group on several domains to load the so-called Inter skimming kit within favicon file.

How the Homograph attack technique is carried out



The attack technique typically involves using similar character scripts with original domains to create and register fraudulent domains which are injected with malware to target unsuspecting users who are deceived into visiting them.

Credit Card Skimming


While the favicon loaded from the homoglyph domain are subsequently used to inject the Inter JavaScript skimmer to capture the credit card information entered on a e-commerce payment page and exfiltrates these details to the domain used to host the favicon file.

The reseachers discovered some legitimate websites (e.g., "cigarpage.com") that were hacked and injected with malicious code referencing an icon file which loads a look-alike version of the favicon from the decoy site ("cigarpaqe[.]com"). In the same vein, is the MyPillow breach, which is similar to the modus operandi involved by injecting a malicious JavaScript hosted on "mypiltow.com," a homoglyph of "mypillow.com."

How Web Users can guard against this kind of phishing attack



The threat actors are becoming more sophisticated in their craft, therefore the lines between the different attack scenarios and what researchers can make of the kind of attack is getting blurred by the day.

It is recommended that web users should not follow links in chat messages and other public content, and always turn on multi-factor authentication when available to secure their accounts from being hijacked.

And more importantly, they should scrutinize the URL of websites they intend to visit to ensure that the link is indeed the actual destination, and they should avoid the clicking of links from emails, rather they should extract the link for further scrutiny before visiting it.

New Card Skimming methods using Infected Favicon and Homograph Domains

Game apps


The excitement that comes with hosting in-person game night might not be a possibility for now because of the times that we are now.

But being that as it is, it is possible to get the excitement digitally right from the cozy comforts of your room through apps that you can download even for free. No matter your bias as far as sports is concerned, you are going to get something that will match your expectations among the varieties that are online.

It is possible to play these games through Apps on your Android devices. Now you can even have more time for it thanks to essay writing help where you can order your college papers. Let us go into the list of some of the popular game apps that you can play with your friends.

10 Fun Game Apps to Play With Your Friends



The below listed games represents 10 super fun Android games that you can enjoy playing with your friends!

1. Ball Pool



This game recreates a night playing pool with friends at the local bar through this virtual game. This app allows players to play one on one and at the same time will allow you to link it with your Face book page to enable you to play with your friends on Face book.

2. Boggle With Friends



The most interesting aspect of this game boils down to the fact that the app keeps the score for you. To challenge people that you know, you must click on the Friends tab. Shake the lettered dice into a grid and earn points for all lettered combinations that you can spot.

3. Psych! Outwit Your Friends



This game is a typical Balderdash version that you can play with your friends. Here players take on fake names in turn to answer questions and each correct answer earns the player points. Playing this game in a group is possible when a player clicks on “start a game”.

4. Yahtzee with Buddies



The mobile version of this game will give you the opportunity to play this game with anyone no matter the distance between you and the players. With a click on the social button and entering the user name of people, you can link up to play the game.

5. Uno!



There are several classical versions of this game but you can still play the original version with a group of friends you know in classic mode. Simply click on the social button to enable you to send the link to friends that you want to play the game with.

6. QuizUp



Players will encounter themed lines of questions with this game in question. There are quite some numbers of topics that you can choose from and this app can match up with random opponents or those of your choice.

7. Words With Friends



If your take is on the Scrabble game, then you are going to get the greatest excitement with the download of “Words With Friends” on your device.

8. Kahoot!



Here, you allowed creating your own quiz and the answers to them. You can now invite up to 10 people for free to enjoy the game. If you want to involve more players, it will come at a cost of $9.9 per month.

9. Game of Life



This game can be played on your mobile and it involves a multilayer mode where you can invite your friends to play against each other. The ultimate reward here is retirement.

10. Monopoly



The choice is yours to play this game alone with the computer or inviting friends online in different locations. The offline mode allows playing with your family in person.

10 Fun Game Apps to Download and Play With Your Friends on Android

Ubuntu Linux


Canonical has finally released Ubuntu 20.04.1 LTS as the first point release for Ubuntu 20.04 LTS, which made debut on 23 April 2020 with a number of enhancements.

While Ubuntu 20.04 will still be supported for additional five years until 2025, and users can also extend its security support through the Extended Security Maintenance (ESM) program for a fee.

Along with the first point release for Ubuntu 20.04, the Ubuntu team also announced the point versions of other seven official Ubuntu flavors, namely: Kubuntu 20.04.1 LTS, Ubuntu MATE 20.04.1 LTS, Ubuntu Budgie 20.04.1 LTS, Lubuntu 20.04.1 LTS, Xubuntu 20.04.1 LTS, Ubuntu Kylin 20.04.1 LTS, and Ubuntu Studio 20.04.1 LTS.

What’s New in Ubuntu 20.04.1 LTS?



Ubuntu 20.04.1 LTS mainly included a number of bug fixes, security and hardware updates, like the recent BootHole bug that affected most of the Linux distributions via GRUB2 bootloader with Secure Boot.

In addition to the bug fixes, this first point release also includes all security updates from the Ubuntu Security Notice list affecting Ubuntu 20.04 LTS that were released on July 29, 2020. However, Ubuntu 20.04.1 did not bring the much awaited new Hardware Enablement Stack (HWE), which often comes with first point releases, as it shipped with the same Linux kernel 5.4 as in 20.04.

You can read the full list of all the bugs fixed starting from Ubuntu 20.04 to 20.04.1, by visiting the change summary page.

How to Upgrade to Ubuntu 20.04.1 LTS



If you want to upgrade from Ubuntu 18.04 or 19.10 to Ubuntu 20.04.1 LTS now, you can use the force upgrade process. But all previous users of Ubuntu 18.04 LTS will soon receive the notification for an automatic upgrade to 20.04.1 LTS.

For new users, you can download the ISO images of Ubuntu 20.04.1 LTS which is now available on the official page. You can also see the upgrade instructions available here, if you need guidance in upgrading your system.

Ubuntu 20.04.1 LTS: The First Point Release arrives with some major Bug fixes

Microsoft Your Phone


Microsoft is looking to take charge of what’s running on Android with more additions to "Your Phone" app which it released in 2018. Now, the company has announced that Your Phone app can run Android apps on Windows 10 to enable the much-needed cross-device compatibility.

While Microsoft had earlier added several other useful features such as SMS Organizer to help Android users achieve better cross-device compatibility with Windows 10.

The latest addition was made possible through Microsoft's partnership with Samsung, thereby letting Your Phone app link to Windows integration on select Samsung devices, to enable users stay in the flow by allowing them to read messages, take calls, check notifications, and view photos, all from their Windows 10 PC.

And Samsung Galaxy Note 20 users can also access and interact with their favorite mobile apps directly on Windows 10 PC through the Your Phone app.

How the Seamless connection between PC and Android Phone works?



If an app is launched, it will open in a separate window, allowing the users to multi-task and saving the sign-in or set up hassles.

Your Phone app


Therefore, you can pin your phone’s Android apps to Windows 10 taskbar or Start menu for a quick and easy access, so that you can easily check your social feed or order for lunch without ever picking up your phone.

And whether you're working on a doc, or keeping up with friends on your social media or perhaps, you are simply staying connected with family, everything is accessible in one place.

Why Exclusively on Samsung Galaxy Note 20?



Microsoft and Samsung had been developing the feature in an exclusive long-term partnership, so that the new Your Phone features will first arrive on Samsung devices.

And the Android app support for Windows 10 as one of such features is only available on the recently released Galaxy Note 20 via the Link to Windows integration.

However, it is believed that the feature will be coming to more Samsung Galaxy devices soon, and it might also arrive for other Android devices subsequently.

Microsoft brings Android App Support to Windows 10 Via Your Phone

Nearby share chromebook


While Chromebooks already have capabilities that make them work with Android, like Instant Tethering, Google is rolling out a new feature called Nearby Share that will make Android and Chromebook work better together.

The AirDrop-like file sharing feature, Nearby Share is already available for select Android devices, including the Pixel lineup and a few Samsung devices. But, Google has confirmed that it will come to all Android devices running 6.0 or higher in the coming weeks.

Nearby Share for Android will rely on Bluetooth, Wi-Fi direct, and third-party apps such as ShareIT for easy file sharing.

How Nearby Share will work on Android



Nearby Share works by automatically choosing the best protocol for fast sharing either using Bluetooth, Bluetooth Low Energy, WebRTC or peer-to-peer WiFi, allowing file sharing even when fully offline.

Nearby Share


Similar to AirDrop, you can choose the visibility settings such as: all, some, or stay hidden so that others can't detect that you are sharing files, with the possibility of sending the files anonymously.

Nearby Share will eventually work with Chromebooks for swift sharing of files between Android device.

How safe and secure is Nearby Share



Google claims that Nearby Share was built with privacy at its core, so you can share and receive files with peace of mind.

As Nearby Share allows you to send and receive files anonymously, it also allows you to adjust the privacy settings from your phone’s Quick Settings which you can set to “hidden,” visible to “some contacts” or visible to “all contacts,” so that you will never receive unsolicitaed files.

Google promises to bring Nearby Share to more devices in the Android ecosystem over the next coming weeks.

How to Instantly share files between Android and Chromebook with Nearby Share

Files app


Google has added a new security feature to Files by Google app called ‘Safe Folder’ which appears as a button in the “Collections” section on the “Browse” tab.

While the Safe Folder can only be accessed by entering a 4-digit PIN, and similar to Microsoft’s OneDrive Personal Vault, it allows the moving of files to another folder on the device without restrictions.

The PIN-protected Safe folders will not be inaccessible without the password and invisible to other apps on the device.

How Android ‘Safe Folder’ feature secures your files



The Android Safe Folder doesn’t save to the cloud, which means that you can’t transfer files between different devices. And if you happen to lose your phone, the associated files will be lost forever.

Android Safe folder


Also, when you delete and re-install the Files app without first recovering your files, everything will be lost. And bear in mind that if you forget the 4-digit PIN, all the files will be completely lost since the files in Safe Folder are encrypted.

How to Download the Android Safe Folder



The Android Safe Folder feature is currently rolling out to Files in Google app version 1.0.323. But, if you want to get the feature now, you can download the Safe Folder APK or perhaps, wait until it arrives on the Play Store.

Google is positioning the Safe Folder as a way to keep sensitive documents safe from unauthorized access and accidental deletion on your Android phone.

Google's new ‘Safe Folder’ for Android secures your files with a 4-digit PIN

Touch/Face ID


Apple's implementation of Face ID or Touch ID biometric feature which authenticate users to log in to websites via Safari, and specifically users using Apple ID logins, has a severe flaw.

The flaw was uncovered back in February by a security specialist at Computest, and was responsibly reported to Apple through their disclosure program, which the iPhone maker promptly addressed in a recent server-side update.

Apple fixed the vulnerability last week, whereby the server will now also correctly check the redirect_uri for the API used by AKAppSSOExtension.

The Touch/Face ID Flaw further Explained



The flaw stems from when users try to sign in to a site that requires Apple ID, where a prompt is displayed for authentication of the login using Touch ID. It skips the required two-factor authentication, as it already seems to have a combination of two factors for identification, the device and biometric information.

While the usual process is with an Apple ID and password, requiring the website to embed an iframe pointing to Apple's login validation server to handle the authentication. The iframe URL also have two other parameters, a "client_id" identifying the service and a "redirect_uri" with the URL to be redirected to after verification.

In the situation that a user is validated using Touch ID, the iframe is handles it differently in that it communicates with the AuthKit daemon to process the biometric authentication and retrieve a token ("grant_code") which is used by icloud.com to continue the login process.

The daemon communicates with an API on "gsa.apple.com" which it sends the details of the request and also receives the token. Therefore, the flaw resides in the aforementioned gsa.apple.com API, which made it possible to abuse the domains to verify an ID without authentication.

How the Touch/Face ID Flaw could have been exploited



An attack could have been executed by simply embedding JavaScript on the webpage displayed when connecting to a Wi-Fi network for the first time via captive.apple.com, which could allow an attacker to access a user's account by accepting a TouchID prompt from the page.

It means that the attacker could also exploit the vulnerability on any of Apple's subdomains to run a malicious JavaScript code that can trigger a login prompt via the iCloud client ID, and using the grant token to get a session on icloud.com.

And it would have been possible to gain access to a number of iCloud accounts, which could have allowed the attackers access to backups of files, location of the user, and many other personal information.

Apple Face ID Flaw Could Allow Attackers to Hijack Your iCloud Account

1Password Linux app


1Password is a popular password manager that provides a place for users to store their passwords and other sensitive information securely, developed by AgileBits, with a virtual vault using a PBKDF2-guarded master password.

Now, the cross-platform password manager app, 1Password, has finally arrived for the Linux platforms with full native support, and currently in development preview. This initial release is available for testing purposes only, and therefore, it is recommended that users should not use it within business environments.

As expected, the official release will be announced later this year with a long-term support, including new features and changes over the next few months.

What does 1Password Native Linux App means?



While there is a stable version of 1Password for Linux, but it can only be used in the browser. And the 1Password Native Linux App, on the other hand means that it can now be installed as an AppImage.

1Password Native Linux App is built using Rust for secure backend and React.js library for responsive component-based frontend, with the app including full end-to-end encryption for security with performance improvements for Linux users.

For the 1Password developer preview for Linux, some of the current supported features are as follows:

  • Automatic Dark Mode
  • Support for Tiling window manager
  • Unlock with biometrics and Linux user account
  • X11 clipboard integration
  • Installation via apt and dnf packager managers
  • Data export support


Additionally, Linux users can unlock multiple accounts with different passwords and also, be able to create collections to organize data across accounts and vaults.

How to Download 1Password Native Linux App



As a preview release, 1Password Linux app is currently a read-only, meaning that you can sign in, view items, search, and copy, but you can’t edit or create anything yet.

So, if you want to give it a spin, the testing version of 1Password can be downloaded on Linux distributions such as Debian, Ubuntu, CentOS, or Red Hat, by following the installation instructions available here. And for other Linux distros, it is available to download as an AppImage.

1Password Download: A Native Linux App Release Available For Download

Linux Kernel 5.8


The latest stable Linux Kernel 5.8 has finally been released after seven release candidates, with the new mainline release succeeding Linux Kernel 5.7.

While Linux 5.8 received the highest numbers of merge requests during its merge window, which Linus Torvalds dubbed “the biggest release of all time” even surpassing the previous record set by Linux Kernel 4.9, as the latest stable release now consists of over 17595 commits.

Albeit, Linux Kernel 5.8 may not be the biggest release ever as regards git status, according to the data aggregated by Thorsteen Leemhuis, also known as “The Linux Kernel Logger.” To see the git status on any Linux kernel, you'll need to check out the data aggregated data here.

What's New in Linux kernel 5.8?



Linux Kernel 5.8 brings several new changes ranging from memory management to file system, including hardware support, graphics, security, drivers, and many more. Find the key changes below:

  • Support for ARM SoC and platform
  • Support for Inline Encryption hardware
  • Support for swapping Fn and Ctrl keys on Apple keyboard
  • Extended IPv6 Multi-Protocol Label Switching (MPLS) support
  • Qualcomm Adreno 405, 640, and 650 GPUs driver support
  • Support for Shadow Call Stack and Branch Target Identification in ARM64
  • Thunderbolt support for Intel Tiger Lake and non-x86 systems
  • Intel Tiger Lake Thunderbolt support


Additionally, Linux Kernel 5.8 has also brought improvements to Microsoft exFAT drivers, EXT4, Btrfs file systems, and the open-source AMD Radeon graphics drivers.

How to Download Linux Kernel 5.8



Linux Kernel 5.8 is now available for download from the official page. And for users on a rolling Linux distro like Arch Linux, they'll be able to get it easily by updating their system.

While for other Linux distros like Debian and Ubuntu, Linux Kernel 5.8 is not made available early as they focus on stability and therefore discourages users to try it. But you can download it directly from the mainline Ubuntu kernel page for manual installation.

Linux Kernel 5.8 records the highest number of Commits making it biggest release

Taidoor Malware


Taidoor malware was notorious for compromising thousands of systems in 2008, with the bad actors haven deployed it on targeted networks for remote access.

According to the US intelligence agencies, there is a new variant of the 12-year-old computer virus which was employed by Chinese state-sponsored hackers to target other governments, corporations, and high net worth individuals.

The FBI believes that the Chinese government actors are now using the malware variants in conjunction with proxy servers to maintain a stealthy presence on targeted networks and exploitation; with the US Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Defense (DoD) issuing a joint advisory.

How the Taidoor RAT is used to Target governments and corporations



Trend Micro researchers in 2012 analysis, claimed that the actors behind Taidoor leveraged socially engineered emails with malicious PDF attachments to target Taiwanese government.

While Taidoor is installed on targeted system as a service dynamic link library (DLL) with two files, with the first as a loader (ml.dll), which decrypts the second file (svchost.dll) and executes it in memory, serving as the main RAT (Remote Access Trojan).

Another cybersecurity outfit, FireEye also noted significant changes in their tactics in 2013, whereby the malicious email attachments didn't come with the Taidoor malware, but instead dropped a 'downloader' that could grab the malware remotely. Now, the latest advisory has it that the tactics of using decoy documents with malicious attachments is still used by the actors.

How to Mitigate against Taidoor Malware



The US Cybersecurity and Infrastructure Security Agency (CISA) recommends that network administrators should keep their operating system patches up-to-date, disable any file and printer sharing service, and exercise caution on opening email attachments.

Also, CISA encourages users to report on its official site any suspicious activity, including possible malicious activities, security incidents, software vulnerabilities, and phishing-related scams.

Taidoor Malware: US warns of a new strain of the Chinese 'Taidoor' Virus

Linux Kodachi


Linux Kodachi is a secure operating system that promises complete privacy and anonymity, with the latest update, Linux Kodachi 7.2 spotting the popular private messaging system, Session Messenger.

The new point version release, Linux Kodachi 7.2 is code-named ‘Defeat’ and comes with several new security-oriented features, and performance improvements. It is built on the same Xubuntu 18.04 LTS, but with upgraded Linux Kernel from version 5.4.0-33 to 5.4.0-42, with all new components.

While the highlight feature of Linux Kodachi 7.2 remains the addition of one of the most popular private messengers, Session Messenger. Find other new changes and additions below.

What's New in Linux Kodachi 7.2 Release?



Besides the core component of Xubuntu 18.04 LTS, Linux Kodachi 7.2 Release comes with upgraded Linux Kernel from version 5.4.0-33 to 5.4.0-42. Other key changes includes:

  • Updated OnionShare utility
  • Conky system monitor Improvements with reduced refresh timer
  • IP lookup plugin replaced in Kodachi browser
  • pci=noaer added to grup options for error prevention
  • Yandex DNS moved to a lower position


And following the rebranding of Matrix protocol-based messaging client, Riot, Kodachi has replaced it with Element. Furthermore, Kodachi now provides Steghide-GUI for secure communication, which can be used to hide text messages encrypted in jpg, wav, or other file formats. Additionally, there is another end-to-end encrypted instant messaging app, Threema, added to the Kodachi browser bookmarks.

How to Upgrade to Linux Kodachi 7.2 Release



If you’re an existing user of Linux Kodachi, you can easily upgrade your current Linux Kodachi system to the latest version 7.2., by running the following command:

sudo apt update && sudo apt full-upgrade


And for new users, the ISO images of Linux Kodachi 7.2 can be downloaded from here and the installation instructions are available here.

Linux Kodachi 7.2 Release: Messaging with complete Privacy via Session Messenger

Chrome OS


Google's effort to bring Android app support to Chrome OS is still a work-in-progress, and the purported dual-boot capability a mere pipe dream; but now, the company plans to bring Windows 10 app support to Chrome OS.

In partnership with Parallels Desktop, Google wants to bring Windows 10 app support to Chrome OS for enterprise users, while there is also the plan for Windows OS dual-boot within Chrome OS on a virtual machine using Parallels Desktop, including the possibility of a seamless experience.

The move is quite similar to how Microsoft has brought Linux GUI apps to Windows 10 via WSL2, albeit the technicality may differ, and users would have to use the Windows apps side-by-side with Chrome web apps and Android apps without having to run the entire OS.

Google is still found wanting in its own ecosystem



If you are an Apple fan, you should be familiar with the impressive continuity or convergence between their various devices. For instance, if you are watching a movie on your Mac wearing earphones and got a call on your iPhone, you'll be given the option of receiving the call right on your computer without resorting to your phone.

But same can't be said of Android and Chromebook; with such convergence features lacking on Android, it is a huge turn down, especially for those who are switching from iPhone to Android phone.

And Chromebooks running Google's own Chrome OS can't even boast of the level of convergence in Apple products, despite the ploy to tie Chromebooks and Android devices together, which Google had earlier outlined the authentication by a secondary device plan, allowing users to bypass their phone or tablet’s lock screen (though, optional).

The limitation lies in the fact that you can only open your Chromebook with your Android device in your pocket, with the laptop automatically getting unlocked and signing you into your Google account, without requiring a password.

Why the move to incorporate more convergence into Microsoft systems?



Microsoft has been trying hard to take charge of what’s running on Android, with the additions of "Your Phone" app which it released in 2018. And the company since then has added several other useful features such as SMS Organizer to help Android users achieve better cross-device compatibility with Windows 10.

So, Google now wants to give back, or perhaps, take back some charges, even as it has managed to port Android apps to Chrome OS. Therefore, it has sought after the experts, which in this case is Parallels Desktop, with the experience of running Windows apps on Apple’s macOS.

And Google's new thinking in the line of incorporating more of convergence features into Microsoft systems might be the joker to gain more grounds in the Windows ecosystem.

How Google plans to bring Windows Apps to devices running Chrome OS

Nitrux 1.3.1


Nitrux is a Linux desktop distro based on Ubuntu, which uses the Calamares installer and includes NX Desktop and NX Firewall on top of the KDE Plasma 5 desktop environment and MauiKit Applications. The previous version Nitrux 1.3.0 brought several performance improvements; now, Nitrux 1.3.1 comes with updated KDE Plasma desktop, KDE Framework and Applications.

Nitrus remains one of the most unique Linux distributions not only because of the beautiful KDE Plasma desktop, but also for employing a portable universal app format, called AppImage, coupled with package managers like APT and DPKG.

Besides the upgraded Linux Kernel from the previous version of v5.6.0-1017 to the latest version 5.6.0-1020 that offers bug and security fixes, Nitrux 1.3.1 also includes some new enhancements.

What's New in Nitrux 1.3.1 Release?



Nitrux 1.3.1 has updated to KDE Plasma 5.19.4, KDE Framework 5.72.0, and KDE Applications 20.04.03, with further touches to GTK theme to make it look more similar like the Kvantum theme and Plasma color scheme. It also updated Luv icon theme, including all the Wallpapers for more modern appearance.

Nitrux Wallpapers


Just as in the previous release, Nitrux 1.3.1 also added more wallpaper to the default collections, and replaced some files with uncompressed images with better quality.

It has also changed the user interface of Calamares installer with the QML port module, Calamares-QML, and also fixed the problem with the environmental variables resulting issues with changing application styles.

How to Upgrade to Nitrux 1.3.1



The new point version, Nitrux 1.3.1 is now available for download, through the ISO images, if you want to give it a spin. And if you are an exisiting user, you can easily upgrade to Nitrux 1.3.1 from the previous version.

Kindly note that the new ISO now uses the LZ4 lossless data compression algorithm for faster installation.

Nitrux 1.3.1 Release: Updated KDE Plasma desktop environment and Applications

Android Sucks


The rise of Android is phenomenal, after Google acquired Android back in 2005, and from a point of near-obscurity; it achieved over 250 million product activation per year as at 2014. Google had successfully turned a no-name operating system into the world's most popular mobile platform.

But, Android has its woes, as the dominant mobile platform at the moment, there are definitely lots of malicious actors targeting the mobile OS; with over 1.4 billion people using Android smartphone or tablet per day, and the fact that it’s open source, therefore free for manufacturers to use makes it a big deal.

Though, the openness is partly a reason for the dominance, on the other hand, it has led to fragmentation, a situation where most Android phones are not able to get regular update for the latest security patches.

5 Reasons Why Android Operating System Sucks



1. Increase in Android Malware



Google had been serious with the business of keeping Android secure over the years, with security updates being pushed out monthly, but not every smartphone and tablet receives these monthly security updates.

Even Android security team had at one time admitted that roughly half of the devices in use as at the end of 2016 did not receive any update for at least 12 months.

Although the potential risks could be frightening, as the Android fragmentation issue isn't easily solved, which may mean that the question of Android security now comes down to the device.

2. Buggy Apps



The fact that just anyone can submit an app to the Play store, is another ugly side of Android which has led to increase in the amount of crappy apps on the platform.

Also, the Play Store until recently has been poorly regulated leading to truck-loads of buggy apps that could even steal your personal data on your devices.

3. Battery Drain Issues



With the increase in buggy apps, means that there are many apps that can cause Android battery to drain. Particularly some apps downloaded to your phone in a few cases, could be causing unnecessary battery drain without you even knowing about it.

Most of these apps start to cause surprising battery drain after an update and the only solution is to wait for the fix from the developer through another cycle of update.

4. Not All Devices get Software Updates



This is another issue of Android fragmentation, with numerous OEMs saddled with the churning out of devices; for new Android versions, the phone makers had to wait for the chipset vendors to provide the update to processors to update the part of the code related to the hardware.

Although now, with Project Treble, the hardware-specific elements are just a crust, which remains in place for device's lifespan.

5. Lots of Fake Devices



While it is very easy to identify genuine Apple device, but same cannot be said of Android with several fake products bearing the name of popular OEMs that are hard to detect.

The biggest issue with Android is fragmentation, with these numerous OEMs saddled with the churning out of devices, therefore the possibility of getting fake devices is higher with Android.

Why Android Sucks? 5 Reasons Why Android Operating System Sucks