[Guida] 5 comuni problemi su Android e come risolvere! (Ita & Eng)

Quante volte ci troviamo un messaggio d'errore o semplicemente quel brutto avviso che ci mette paura perché non sappiamo come risolvere...
1) Google Play Store Crash
Quante volte il Play Store continua a chiudersi e doppiamo riaprirlo, ecco una delle soluzioni per risolvere questo problema / As times the Play Store Crash and we must re-open?
- Impostazioni  / Settings
- Applicazioni / Apps
- Tutte le Applicazioni (Swipe a destra solitamente) / Swipe right to All Apps
- Trovate Google Play Store / Locate Google Play Store
- Eliminare Cache e Data / Wipe Cache and Data
- Riavviare il dispositivo / Restart the device
Se non funziona, si consiglia di pulire la cache/data anche di Google Play Service e Google Service Framework. / If this not work, wipe cache/data of Google Play Service and Google Service Framework.

2) Google Play Store non scarica le app / Google Play Store not downloading apps
Spesso il Play Store non ci installa le App, il fix per questo problema possono essere due / Sometimes Play Store won't install apps, there are two fix for this problem.
1] Pulire la cache di Google Play / Wipe Google Play cache
- Impostazioni  / Settings
- Applicazioni / Apps
- Tutte le Applicazioni (Swipe a destra solitamente) / Swipe right to All Apps
- Trovate Google Play Store / Locate Google Play Store
- Eliminare la Cache / Wipe Cache
- Riavviare il dispositivo / Restart the device
2] Eliminare la storia di ricerca di Google Play / Wipe Google Play history 
- Aprire Google Play Store / Open Google Play Store
- Impostazioni / Settings
- Cancella cronologia delle ricerche / Clear history

3) Ho installato un Malware! / I installed malware!
Spesso scarichiamo app di origini sconosciute senza usare il Play Store o semplicemente perché vogliamo quella app a pagamento tanto desiderata ma la scarichiamo illegalmente dal posto sbagliato e andiamo a installare un malware. Cosa fare? 
 In rete si consiglia di installare un antivirus, Lookout, questo perché è gratuito e in grado di trovare molti malware. Ma il nostro consiglio è ovviamente quello di disinstallare l'app interessata (quella scaricata dal posto sbagliato) e pulire la cache del nostro telefono. /
Often we download apps from unknown sources without using the Play Store or simply because we want the paid app so desired, but we download illegally from the wrong place and we are going to install a malware. What to do?
In the network is recommend install an antivirus, Lookout, because it is free and able to find many malware. But our advice is obviously to uninstall the app in question (the one downloaded from the wrong place) and clean the cache of our phone.

4) Il nostro Android non legge la scheda microSD / Android not reading microSD card
Spesso capita che la nostra SD è danneggiata o qualche File System è corrotto e quindi non viene letta nel modo corretto / It often happens that our SD is damaged or some file system are corrupt and is not read correctly
Il consiglio è di formattarla / The advice is format that
- Impostazioni / Settings
- Memoria / Storage
- Scroll fino quando troviamo "Cancella scheda SD" / Scroll and find "Format SD card"
- Formattare / Format

5) Devo resettare il dispositivo ma non so come fare / I need reset the device, how to do?
Quante volte capita di dover resettare il nostro Smartphone perché non funziona qualcosa o semplicemente dobbiamo venderlo? / How many times you need to reset our Smartphone why something does not work or simply have to sell it?
- Impostazioni / Settings
- Backup e ripristino / Backup and reset
- Ripristino dati di fabbrica / Factory data reset

Servono davvero Antivirus e vari Cleaner? Ecco la risposta!

Spesso nel web, nei blog e forum c'è la solita discussione riguardo l'installazione di Cleaner che servono a "liberare" memoria e "Antivirus" che devono a proteggerci da vari malware. Bene gli utenti più conspevoli ed esperti dicono .....
Gli utenti più consapevoli ed esperti vietano l'installazione di questo tipo di programmi e per vari motivi, ma la prima domanda che ci facciamo è: Possiamo prendere Virus su Android?
La risposta è si, ma nonostante tutto avere un antivirus non serve a nulla, perché Android è un sistema basato su Linux, un sistema operativo dove l'infezione da virus è di base complicata e quasi impossibile, poi su Android siamo noi stessi a prendere malware con le scelte che facciamo e andando a installare app o aprendo contenuti sospetti.

Ma oltre a questo, i virus possiamo prenderli solamente se abbiamo uno smartphone con root e installiamo app fuori dal Play Store. Spesso ho visto che utenti che usano antivirus, nonostante tutto, si sono ritrovati malware all'interno, malware presi attraverso app installate tramite APK e trovate all'esterno del Play Store.

Mentre la seconda domanda che ci poniamo è: Task Killer e Cleaner vari, servono realmente a liberare memoria?
Siamo nel 2017, la maggior parte dei terminali ha 2GB di Ram come minimo ed è fornito di MicroSD, se non di una memoria di massa veramente grande, quindi l'utilità di questi cleaner è da tenere dubbia, anche quella dei vari task killer. Il modo migliore per liberare memoria è quello di pulire regolarmente la Cache del proprio dispositivo ed eliminare la cronologia e file scaricati che non ci servono più. Questi programmi spesso sono operativi 24h su 24 e quindi sono i primi a occupare memoria e processi durante tutto il tempo!

Una delle classiche schermate che ci ritroviamo nella navigazione web è appunto quella che ho usato nella copertina, "Il sistema è fortemente danneggiato da quattro virus" chiaramente fasulla, si tratta di un inganno per farvi installare app non controllate (Google controlla ogni app presente nel Play Store) e quindi danneggiare il vostro dispositivo e rubare i vostri dati. Per eliminarla dovete chiudere ogni finestra del browser, cancellare la cronologia e la cache.

Il nostro consiglio è quello di evitare l'installazione di app per la Pulizia, Task Killer e Antivirus, perché spesso e volentieri occupano più processi di quelli che devono eliminare e vanno così a consumare batteria e memoria.

'Ridiculous' antivirus flaw made Windows PCs vulnerable to attack

Design Flaw in Trend Micro Security antivirus allows hackers to remotely hijacked, or infected with any malware wiped clean and have its stored passwords stolen -- even if they were encrypted .Thanks to a critical vulnerability in Trend Micro Security Software.Trend Micro has now issued a security patch for the flaw, which was contained in the password manager of the antivirus package. Users should update the software as soon as possible. 

Tavis Ormandy, of Google Project Zero -- an assembled team of security researchers whose mission is to track down and resolve security holes in the world's software -- discovered the design flaw. Google's Project Zero security researcher, Tavis Ormandy, discovered the remote code execution flaw in Trend Micro Antivirus Password Manager component, allowing hackers to steal users’ passwords.In short, once compromised, all your accounts passwords are gone. Ormandy posted his findings to the Google Security Research blog, urging that Trend Micro "should be paging people to get this fixed." 

"I don't even know what to say -- how could you enable this thing *by default* on all your customer machines without getting an audit from a competent security consultant?" Ormandy wrote in one of a series of emails -- repeated on the blog -- to Trend Micro after finding the vulnerability. "You need to come up with a plan for fixing this right now. Frankly, it also looks like you're exposing all the stored passwords to the internet, but let's worry about that screw up after you get the remote code execution under control."

One of Ormandy's findings was that any webpage could run commands directly onto PCs that had the flawed software installed. Such commands include wiping the computer, downloading and installing malware onto it, and uninstalling the Trend Micro antivirus software.

Digging further into the Trend Micro Password Manager, Ormandy discovered that a malicious script could steal all passwords stored in the browser, even if they were encrypted. Ormandy warned Trend Micro that it needed to hire a cybersecurity professional. 

"This means anyone on the internet can steal all of your passwords completely silently, as well as execute arbitrary code with zero user interaction," Ormandy wrote in another email to Trend Micro. "In my opinion, you should temporarily disable this feature for users, then hire an external consultancy to audit the code." 

"The worst thing you can do is leave users exposed while you clean this thing up," he continued.

Google's Project Zero gives companies 90 days to fix problems before releasing its findings to the public. Trend Micro patched up the vulnerability within a week. A new version of the antivirus software is now available. 

Trend Micro published a blog about the vulnerability after it had released the mandatory update. 

"The most important thing to know is that the critical vulnerabilities in the public report have been fixed for all Trend Micro Password Manager customers," Christopher Budd, global threat communications at Trend Micro, wrote in the post. "We responded quickly to the initial report and worked with Tavis throughout the process to understand the issue and address them. Thanks to his responsible work with us, we were able to address the most critical issues he brought us in less than one week. We are not aware of any active attacks against these vulnerabilities in that time."

Ormandy has previously exposed vulnerabilities in security products from AVG, Kaspersky Lab, FireEye and Sophos.

Now Android Malware Uses Firewell Rules To Evade Detection From Antivirus Security Applicaion

Android Malware Uses Firewell Rules To Evade Detection From Antivirus

Researchers at Symantec have discovered a new piece of Android malware that drops and runs a firewall binary called DroidWall on compromised devices to prevent security applications from connecting to their services.

Dubbed Android.Spywaller by Symantec, the malware initially behaves like other mobile threats by hiding its icon in an attempt to cover its track and by releasing an encrypted payload containing the malware service logic and loading it into memory. As soon as the threat has been installed on a compromised device, it displays a “Google Service” icon on the device, although the Internet giant doesn’t offer such a product.

At the same time, the spyware is collecting data belonging to specific third-party communication applications, including 

• WhatsApp
• Wechat
• Skype
• BlackBerry Messenger
• Skype
• Oovoo
• Coco
• QQ
• SinaWeibo
• Talkbox
• TencentWeibo
• Voxer
• and Zello.

According to Symantec, the list of data gathered by this malware ranks it among the most comprehensive spyware to date.

The malware then attempts to root the device and start collecting sensitive information while running in the background. All of the information the malware collects from the device ,exfiltrate sensitive data from compromised devices and then sent to a backend server, Symantec explained in a recent blog post.

The Malware Collect the information including 

• Call logs(PII)
• SMS
• GPS readings
• Browser History
• Browser Saved PasswordE
• Emails
• Radio
• Images
• and contacts.

While this behavior has been seen before in mobile threats, Symantec’s researchers note that the new malware stands out because of another method discovered in its reverse payload which checks to see if the Qihoo 360 mobile security app is installed on the device and then block it.

The Qihoo 360 application is popular in China and has a unique identifier (UID) on each device, and the malware collects the identifier if the program is installed. Next, Android Spywaller drops and runs the DroidWall firewall binary, which is a customized version of iptables for Android. This allows it to create firewall rules that will block the targeted security application by referencing its UID.

Developed by Rodrigo Rosauro as an open source app to help users protect their devices, DroidWall was sold to AVAST in 2011, but its source code is still available from Google Code and Github. Although it was initially designed in the form of a security tool, DroidWall can be used by cybercriminals to compromise user security.

For the time being, the malware is targeted at users in China, where a higher proportion of devices are rooted and more exposed to malware since official Google services are not available in the country.

The infection numbers are currenty relatively low, but the threat is worth noting because its authors are using legitimate tools for malicious purposes. To stay protected, users should install a security solution that can block mobile threats, should keep their software updated at all times, and should make sure they install apps only from trusted sources.