Connect with us

Cars

Online security 101: How to protect your privacy from hackers, spies, and the government

Published

on

Cybersecurity is in shambles: Who’s to blame?
We are building our future on a creaking digital foundation. It’s time for that to change.

“I have nothing to hide” was once the standard response to the occasional surveillance experience by way of cameras, border checks, or casual questioning by law enforcement.

Privacy used to be considered generally balanced in many countries — at least, in the West — with a few changes to rules and regulations here and there often made only in the name of the common good.

Things have changed, and not for the better.

China’s Great Firewall, the UK’s Snooper’s Charter, the US’ mass surveillance and bulk data collection — compliments of the National Security Agency (NSA) and Edward Snowden‘s whistleblowing — Russia’s insidious election meddling, and countless censorship and communication blackout schemes across the Middle East are all contributing to a global surveillance state in which privacy is a luxury of the few and not a right of the many.

As surveillance becomes a common element of our daily lives, privacy is in danger of no longer being considered an intrinsic right.

Everything from our web browsing to mobile devices and the Internet of Things (IoT) products installed in our homes have the potential to erode our privacy and personal security, and you cannot depend on vendors or ever-changing surveillance rules to keep them intact.

Having “nothing to hide” doesn’t cut it anymore. We must all do whatever we can to safeguard our personal privacy. Taking the steps outlined below can not only give you some sanctuary from spreading surveillance tactics but also help keep you safe from cyberattackers.

Also: Cybersecurity is broken: How we start to fix it | All the Chromium-based browsers

Data management is at the heart of privacy


Data is a vague concept and can encompass such a wide range of information that it is worth briefly breaking down different collections before examining how each area is relevant to your privacy and security.

Personally identifiable information

Known as PII, this can include your name, physical home address, email address, telephone numbers, date of birth, marital status, Social Security numbers (US)/National Insurance numbers (UK), and other information relating to your medical status, family members, employment, and education.

Why does it matter? All this data, whether lost in different data breaches or stolen piecemeal through phishing campaigns, can provide attackers with enough information to conduct identity theft, take out loans using your name, and potentially compromise online accounts that rely on security questions being answered correctly. In the wrong hands, this information can also prove to be a gold mine for advertisers lacking a moral backbone.

Browsing habits and website visits

Internet activity is monitored by an Internet Service Provider (ISP) and can be hijacked. While there is little consumers can do about attacks at this level, the web pages you visit can also be tracked by cookies, which are small bits of text that are downloaded and stored by your browser. Browser plugins may also track your activity across multiple websites.

Why does it matter? Cookies are used to personalize internet experiences and this can include tailored advertising. However, such tracking can go too far, as shown when the unique identifiers added to a cookie are then used across different services and on various marketing platforms. Such practices are often considered intrusive.

Also: New malware targets Macs to steal from cryptocurrency wallets | Want Google to track you less?

Special feature


Cyberwar and the Future of Cybersecurity

Today’s security threats have expanded in scope and seriousness. There can now be millions — or even billions — of dollars at risk when information security isn’t handled properly.

Read More

Message and email content

Our email accounts are often the pathway that can provide a link to all our other valuable accounts, as well as a record of our communication with friends, families, and colleagues.

Why does it matter? If an email account acts as a singular hub for other services, a single compromise can snowball into the hijack of many accounts and services.

Online purchases, financial information

When you conduct a transaction online, this information may include credentials for financial services such as PayPal, or credit card information including card numbers, expiry dates, and security codes.

Why does it matter? Cybercriminals who steal financial services credentials through phishing and fraudulent websites, who eavesdrop on your transactions through Man-in-The-Middle (MiTM) attacks or who utilize card-skimming malware can steal these details when they are not secured.

Once this information has been obtained, unauthorized transactions can be made, or this data may also be sold on to others in the Dark Web.

Medical records and DNA profiles

A relatively new entrant to the mix, hospitals now often make use of electronic records, and home DNA services store genetic information belonging to their users.

Why does it matter? The loss of medical information, which is deeply personal, can be upsetting and result in disastrous consequences for everyone involved. When it comes to DNA, however, the choice is ours whether to release this information — outside of law enforcement demands — and it is often the use of ancestry services that release this data in the first place.

Also: On the dangers of DNA data: Genealogy tests, Elizabeth Warren, and the end of privacy | Before taking that DNA test: Six things you need to know

What is being done to protect this information?


Businesses that handle data belonging to their customers are being scrutinized more and more with the arrival of regulatory changes such as the EU’s General Data Protection Regulation, designed to create a level playing field and stipulate adequate security measures to protect consumer privacy and data.

Companies will often encrypt your information as part of the process, which is a way to encode information to make it unreadable by unauthorized parties.

One way this is achieved is by using SSL and TLS certificates that support encryption on website domains. While usually a paid service, Let’s Encrypt also offers free SSL/TLS certificates to webmasters who wish to improve their websites’ security. (Unfortunately, this has also led to the adoption of SSL by fraudsters.)

End-to-end encryption is also becoming more popular. This form of encryption prevents anyone except those communicating from accessing or reading the content of messages, including vendors themselves.

Following Snowden’s disclosure of the NSA’s mass surveillance activities, end-to-end encryption has been widely adopted by many online communication services. Privacy advocates may cheer, but governments and law enforcement agencies have not rejoiced at the trend — and a political battlefield has emerged between tech vendors and governments that are attempting to enforce the inclusion of deliberate backdoors into encrypted systems.

It is up to us to make use of any privacy-enabling technology we have at hand. Below are some guides with simple steps to get you started.

Also: Five years on, Snowden inspired tech giants to change | Tech’s invasion of our privacy made us more paranoid CNET

Browser basics and Tor


Searching the web is a daily activity for many of us, and as such, it is also a hotbed for tracking and potential cyberattacks.

The most commonly-used browsers are Google Chrome, Apple Safari, Microsoft Edge, Opera, and Mozilla Firefox. However, you should consider using Tor if you want to truly keep your browsing private.

The Tor Project is an open-source browser that is privacy-focused. The software creates tunnels rather than establishing direct connections to websites, which prevents users from being tracked through traffic analysis or IP addresses.

screenshot-2019-03-20-at-15-10-41.png

Not to be confused with the Dark Web — although required to access it and .onion domains in general — Tor is legal and is often used by the privacy-conscious, including journalists, activists, and NGOs.

The Tor browser can be slightly slower than traditional browsers, but it is still the best choice for secure browsing.

Desktop and mobile versions of the Tor browser are also available: desktop, the iOS Onion Browser, and Orbot: Tor for Android.

Also: Firefox to add Tor Browser anti-fingerprinting | Why you’re using Tor wrong

Secure other browsers


If you are more comfortable using Chrome, Safari, Firefox, Microsoft Edge, or another browser, there are still ways to improve your security without implementing major changes to your surfing habits.

Cookies: Clearing out your cookie caches and browser histories can prevent ad networks from collecting too much information about you. The easiest way to do so is to clear the cache (Firefox, Chrome, Opera, Safari, Edge).

You can also set your preferences to prevent websites from storing cookies at all. In order to do so, check out these guides for Firefox, Chrome, Opera, Safari, and Edge.

HTTP v. HTTPS: When you visit a website address, you will be met with either Hypertext Transfer Protocol (HTTP) or Hypertext Transfer Protocol Secure (HTTPS). The latter option uses a layer of encryption to enable secure communication between a browser and a server.

The most important thing to remember is while HTTPS is best used by default in general browsing, when it comes to online purchases it is crucial to protecting your payment details from eavesdropping and theft.

It is still possible for payment details to be stolen on the vendor’s side, but to reduce the risk of theft as much as possible you should not hand over any important information to websites without HTTPS enabled. (It is estimated that shopping cart conversion rates increase by 13 percent with HTTPS enabled, which should encourage webmasters to use the protocol, too.)

To find out whether HTTPS is enabled, look in the address bar for “https://.” Many browsers also show a closed padlock.

Search engines

Google’s search engine, alongside other major options such as Yahoo! and Bing, make use of algorithms based on your data to provide “personalized” experiences. However, browsing histories and search queries can be used to create user profiles detailing our histories, clicks, interests, and more, and may become invasive over time.

To prevent such data being logged, consider using an alternative that does not record your search history and blocks advertising trackers. These options include DuckDuckGo, Qwant, and Startpage.

If you wish to stay with your current browser you can use software that bolts-on to your browser to enhance the privacy and security of your surfing activities.

Browser plugins

HTTPS Everywhere: Available for Firefox, Chrome, and Opera, HTTPS Everywhere is a plugin created by the Tor Project and Electronic Frontier Foundation to expand HTTPS encryption to many websites, improving the security of your communication with them.

NoScript Security Suite: Endorsed by Edward Snowden as a means to combat government surveillance, this plugin has been built for Firefox and other Mozilla-based browsers for the purposes of disabling active content including JavaScript, which may be used to track your online activity. Users can also choose which domains to trust and whitelist.

Disconnect: Another worthy addition to the list, Disconnect provides a visual guide to websites that are tracking your activity. Invisible trackers which monitor you and may also expose you to malicious content can be blocked. Disconnect is available for Chrome, Firefox, Safari, and Opera.

Facebook Container: In a time where Facebook has come under fire for its data collection and sharing practices time after time, Mozilla’s Facebook Container application is a worthwhile plugin to download if you are worried about the social media network tracking your visits to other websites. The plugin isolates your Facebook profile and creates a form of browser-based container to prevent third-party advertiser and Facebook tracking outside of the network.

Blur: Blur, available for Firefox and Chrome, is an all-around valuable plugin to protect your privacy and security. While the add-on can be used as a password manager and generator, ad blocking, and encryption, the true value is the use of “masked cards” in the premium version of the software. When data breaches occur, financial information is often the target. With this plugin, however, throwaway virtual cards are used with online vendors in replacement for the direct use of your credit card data, keeping it safe should a cyberattack occur.

Privacy Badger: Last but certainly not least, the Electronic Frontier Foundation (EFF)’s Opera, Firefox, and Chrome-supporting plugin Privacy Badger is focused on preventing ad networks from tracking you. The software monitors third parties that attempt to track users through cookies and digital fingerprinting and will automatically block those which use multiple tracking techniques. The plugin also includes color-coded indicators of domain tracking scripts.

Also: Microsoft security chief: IE is not a browser, so stop using it | Researcher publishes Google Chrome exploit

screenshot-2019-03-15-at-13-45-47.png

Public Wi-Fi: A security risk?


There is no denying that public Wi-Fi hotspots are convenient. However, you may be placing your privacy and security at risk if you choose to use one while on the move.

The problem with them is simple: As you do not need authentication to access them, neither do cyberattackers — and this gives them the opportunity to perform what is known as Man-in-The-Middle (MiTM) attacks in order to eavesdrop on your activities and potentially steal your information, as well as manipulate traffic in a way to send you to malicious websites.

Hackers may be able to access the information you are sending through the Wi-Fi hotspot, including but not limited to emails, financial information, and account credentials. Hackers may also set up their own rogue honeypot Wi-Fi points that appear legitimate whilst only being interested in stealing the data of those who connect to it.

It is best not to use a public, unsecured Wi-Fi connection at all if possible. An alternative and far more secure method is to use a mobile 4G/LTE connection through your own mobile device.

If you need an internet connection for a device other than your smartphone, an easy way to accomplish this is to set up your mobile device as a mobile Wi-Fi hotspot itself. You can usually find this option in your main scroller menu, or under Wi-Fi settings.

There are other precautions you can take to make a public Wi-Fi hotspot safer — but it’s never devoid of risk.

When you connect to a new Wi-Fi hotspot on Microsoft Windows machines, make sure that you select “Public” when the option appears, as this will enable the operating system to turn off sharing; turn off the Wi-Fi connection when you do not need it, enable firewalls, and try to only visit websites with HTTPS enabled.

In addition, do not use the Wi-Fi hotspot to access anything valuable, such as an online banking service. 

One of the most important layers of security to implement is the use of a virtual private network (VPN) if accessing a public Wi-Fi hotspot — and the use of a trustworthy VPN should be implemented across all your devices, no matter your connection type.

Also: How to fix coffee-shop Wi-Fi | How to set up a satellite Wi-Fi hotspot

VPNs: Why, when, and where?


directory


The Best VPN services for 2019

A virtual private network enables users to send and receive data while remaining anonymous and secure online. In this directory, we look at a few of the very best commercial VPN service providers on the Internet.

Read More

A virtual private network is a way to create a secure tunnel through the inherently insecure internet. Data packets are encrypted before they are sent to a destination server, which also results in IP addresses and your location becoming hidden. Many VPNs will also include a ‘kill switch’ that cuts off your internet access temporarily if connections drop in order to keep your online activity secure.

VPNs have now entered the mainstream. Many users will only adopt these services to access geolocation-blocked content — such as websites and apps banned in select countries — for example, a user in the United States could make themselves appear to be located in the United Kingdom, and vice versa.

However, VPNs have also surged in popularity in response to increased surveillance, making their use a popular option for activists or those in countries ruled by censorship.

(For a more detailed look at how VPNs operate, check out our guide.)

VPNs are not a silver bullet for security; far from it, but they can help mask your online presence. It is worth noting, however, that VPN usage is banned in some countries.

Free vs. premium VPNs

Premium, paid services are often more trustworthy. Free options are often slower and will offer limited bandwidth capacity. VPNs cost money to run and so providers will also require users of free services to agree to alternative means for them to turn a profit — and this may include tracking and selling your data.

Remember, when you are using a free service, whether it’s a VPN or Facebook, you are the product and not the customer.

(If you’re technically able, you could also set up your own private VPN. A handy set of instructions can be found here.)

Which VPN should I use?

The most important element to consider when deciding on a VPN is trust. Using a VPN requires all your traffic to go through a third-party. If this third-party VPN is unsecured or uses this information for nefarious reasons, then the whole point of using a VPN for additional privacy is negated.

Conflicts of interest, VPN providers being hosted in countries of which governments can demand their data, and sometimes less-than-transparent business practices can all make finding a trustworthy option a complex and convoluted journey.

However, to make this trip easier, our favorites include NordVPN, Private Internet Access, ExpressVPN, and TorGuard. CNET has also provided an up-to-date directory of good VPN options.

Also: VPN services: The ultimate guide | Why free VPNs are not a risk worth taking

Passwords and vaults


This kind of advice is repeated ad nauseam but it is worth saying again: using complex passwords is the first line of defense you have to secure your online accounts.

Thankfully, many vendors now actively prevent you from using simple combinations that are easy to break, such as QWERTY12345 or PASSWORD123, with dictionary-based and brute-force attacks.

However, it is difficult to remember complicated password credentials when you are using multiple online services, and this is where password vaults come in.

Password managers are specialized pieces of software used to securely record the credentials required to access your online services. Rather than needing to remember each set of credentials, these systems keep everything in one place, accessed through one master password, and they will use security measures such as AES-256 encryption to prevent exposure.

Vaults may also generate strong and complex passwords on your behalf, as well as proactively change old and weak ones.

It is true that many popular password managers and vaults do have vulnerable design elements that can be exploited on already-compromised machines, but when you balance risk, it is still recommended to use such software. Vendors with the best ratings include LastPass, Keeper, and Blur, but for a full range, check out CNET’s password manager directory.

Enable Two-factor authentication (2FA)

Two-factor authentication (2FA) is a widely-implemented method of adding an extra layer of security to your accounts and services after you have submitted a password.

The most common methods are via an SMS message, a biometric marker such as a fingerprint or iris scan, a PIN number, pattern, or physical fob. Using 2FA does create an additional step to access your accounts and data.

How to enable 2FA: Facebook | Twitter | Instagram | Snapchat | Apple iOS | Google | Microsoft | Amazon

Tutorials for other major services can be found at Turn it On.

You can also use standalone mobile apps to add 2FA to websites. Google Authenticator, available for Android and iOS, is a popular option, as well as Authy.

Also: Two-factor authentication: What you need to know CNET | New tool automates phishing attacks that bypass 2FA

Secure your mobile devices


Mobile devices can act as a secondary means of protection for your accounts through 2FA, but these endpoints can also be the weak link that completely breaks down your privacy and security.

Both Apple iPhones and mobile devices based on Google’s Android operating system have sold by the millions. Android has maintained the lion’s share of the global smartphone and tablet market for years, but due to its popularity, the majority of mobile malware samples are geared towards this OS.

The open-source nature of Android has also opened the way for hackers to search for vulnerabilities in its code, but to combat this, Google does run a bug bounty program and consistent security patch cycle.

iOS, in contrast, is a proprietary operating system and iPhones are generally considered more secure — despite the emergence of security flaws on occasion, which are almost laughable.

(Google has previously said that Android security is now as good as iOS, but we are still waiting to see the real-world evidence of this claim.)

Patch, patch, patch

The first and easiest way to keep mobile devices on either platform secure is to accept security updates when they appear over the air. These patches resolve new bugs and flaws, as well as sometimes provide performance fixes, and can keep your device from being exploited by attackers.

To check your device is up to date on iOS, go to Settings > General > Software Update. On Android, go to Settings > Software Update.

Lock it down

It sounds simple, but many of us don’t do it — make sure your mobile device is locked in some way to prevent its physical compromise.

You can turn on your iPhone‘s Passcode feature to enter a four or six-digit passcode, as well as select the ‘custom’ option to set either a numeric or alphanumeric code. On iPhone X and later, go to Settings > Face ID & Passcode, while on earlier iPhone devices, go to Settings > Touch ID & Passcode. If TouchID is not a feature on your iPhone, the menu option will simply show Passcode.

On Android, you can choose to set a pattern, PIN number, or password with a minimum of four digits. You can choose by tapping Settings > Security & location/Security > Lock Screen.

Biometrics

Face recognition, iris scanning, and fingerprints are biometric authentication options found on modern iPhones and Android devices. These services can be convenient, although it is worth noting that in the US, law enforcement may be able to force you to unlock your devices as biometrics are not protected under the Fifth Amendment.

Find your phone

We want to stop ourselves from being monitored without consent, but some technologies can be beneficial for tracking down our own lost or stolen property.

Find my iPhone is a security feature for iOS devices that you can enable to allow you to track your device through iCloud. The system also includes a remote lock to prevent others from using your iPhone, iPad or iPod Touch in the case of theft.

In order to enable Find my iPhone, go to Settings > [your name] > iCloud. Scroll to the bottom to tap Find my iPhone, and slide to turn on.

Google’s Find My Device can be used to ring a missing device, remotely secure your smartphone, and also wipe all content on your stolen property. The service is automatically made available by default once a Google account is connected to your device but it does require the device to be turned on, to have an active internet connection, and to have both location and the Find My Device feature enabled.

In order to do so, open Settings > Security & Location/Security > Find My Device.

Also: Two-thirds of all Android antivirus apps are frauds | The 10 best smartphones you can buy right now

Other privacy settings


For the iPhone

USB Restricted Mode: A handy security feature introduced in iOS 11.4.1, USB Restricted Mode prevents USB accessories from automatically being able to connect to an iPhone if an hour has elapsed since the last time it was unlocked. In order to enable, go to Settings > Touch ID/Face ID > USB Accessories.

Android

Disable the option to enable unknown developers/apps: If there have been apps you simply had to install outside of Google Play, make sure the “Unknown Sources” or “Install Unknown Apps” option is not left open afterward. Sideloading isn’t necessarily a problem on occasion but leaving this avenue open could result in malicious .APKs making their way onto your smartphone.

To disable it, select Settings > Security > Unknown Sources. On the later Android models, the option is usually found in Apps > Top-right corner > Special access.

Encryption: Depending on your smartphone’s model, you may have to enable device encryption, or some will be encrypted by default once a password, PIN, or lock screen option is in place. If you have such a device you can generally encrypt your smartphone through Settings > Security > Encrypt Device.

Other models, such as the Samsung Galaxy S8, do not have this option as encryption is enabled by default but you can choose to encrypt accompanying SD cards by going to Biometrics and security > Encrypt SD card.

You can also choose to enable the Secure Folder option in the same settings area to protect individual folders and files.

Also: The 10 best ways to secure your Android phone

Jailbreaking

Rooting your device to allow the installation of software that has not been verified by vendors or made available in official app stores has security ramifications. You may not only invalidate your warranty but also open up your device to malware, malicious apps, and data theft.

An example of this is KeyRaider, a malicious campaign uncovered by Palo Alto Networks in 2015. The malware specifically targeted jailbroken iOS devices, leading to the theft of 225,000 Apple accounts and their passwords.

Also: iOS 12: Change these privacy and security settings now | Facebook makes GDPR push with new data privacy settings

Encrypt your messages


There was once a time when Pretty Good Privacy (PGP) was one of only a handful of options available to secure and encrypt your online communication that existed. PGP is a program that can be used for cryptographic protection, however, PGP is complicated to set up and use and there are other options out there that are more palatable to the average user.

If you still wish to use PGP, the Electronic Frontier Foundation has useful guides on its implementation for Windows, MacOS, and Linux. Vulnerabilities were found in the system last year but have since been patched.

keybase.io, an open-source app built based on PGP for mobile and desktop systems available for macOS/iOS, Android, Linux, and Windows, is another option for making use of PGP and end-to-end encryption without the technical difficulties usually involved.

There are a number of encrypted messaging applications:

Signal

Signal is widely regarded as the most accessible, secure messaging service in existence today. Available for Android, iOS, MacOS, and Windows, the free app — developed by Open Whisper Systems — implements end-to-end encryption and no data is stored by the company’s servers, which means that none of your conversations can be seized or read by law enforcement or hackers.

In order to use the service, you will need to tie a phone number to the app. You can also use Signal to replace traditional SMS messaging, but the same encryption and protections do not apply unless both recipients are using Signal.

WhatsApp

WhatsApp is an alternative messaging app, which completed a rollout of end-to-end encryption across all compatible devices in 2016.

Available for Android, iOS, Windows Phone, Mac, Windows, and desktop, the messaging app is a simple and secure means to conduct chats between either a single recipient or a group. Having grown even more popular in recent years and now boasting over one billion users, WhatsApp is certainly worth downloading to replace traditional chat apps. However, to tighten things up, make sure you visit the Chat Backup option in “Chats” and turn it off.

iMessage

Apple’s iMessage, a communications platform that comes with Mac and iOS products, is another option if you want to secure and protect your digital communications.

However, this does come with some caveats.

Messages are encrypted on your devices via a private key and cannot be accessed without a passcode. However, if you choose to back up your data to iCloud, a copy of the key protecting these conversations is also stored — and this has the possibility of being accessed by law enforcement.

In order to keep your messages truly private, turn off the backup option. Apple will then generate an on-device key to protect your messages and this is not stored by the company.

In addition, only conversations taking place between iPhones — rather than an iPhone and Android device, for example — are encrypted.

Facebook Messenger

Facebook Messenger is not encrypted by default. The chat service does, however, have a feature called “Secret Conversations ” on iOS and Android — but not the standard web domain — which is end-to-end encrypted.

In order to start a secret conversation, go to the chat bubble, tap the “write” icon, tap “Secret,” and select who you want to message. You can also choose to set a timer for messages to vanish.

A word of warning, however: Not only is Facebook constantly under fire for its attitude to the privacy and security of its users and their data, but US law enforcement is reportedly attempting to pressure the social network into planting a backdoor into Facebook Messenger to monitor conversations. With other end-to-end options available, it’s not worth the risk.

Telegram

Telegram, which received over three million new signups during the Facebook outage in March 2019, is another popular chat application worth noting as many presume chats made through this app are automatically secure and encrypted — which is not the case.

Available for Android, iOS, Windows Phone, macOS, Linux, Windows, and desktop, Telegram is not encrypted by default but does have a “Secret Chat” option that is end-to-end encrypted and kept away from the Telegram cloud. These particular chats are device-specific and include a self-destruct option.

It is also worth keeping an eye on the rumored, upcoming Facebook Messenger, WhatsApp, and Instagram merger. Facebook CEO Mark Zuckerberg has reportedly ordered end-to-end encryption services to be added to the combined platform to create secure, cross-app messaging, which may make the combined service a future possibility for secure chats. However, the integration is not expected to be ready for commercial release until 2020.

Also: Why social media fatigue is spreading | The hacker’s paradise: Social networks

Mobile application sources and permissions


No matter which mobile operating system you have adopted, downloading apps from verified, trusted sources such as Google Play and Apple’s App store is always the best option to maintain your security and privacy.

However, the permissions you give an installed app are also important.

Apps can request a variety of permissions including sensor data, call logs, camera and microphone access, location, storage, and contact lists. While many legitimate apps do require access to certain features, you should always make sure you are aware of what apps can access what data to prevent unnecessary security risks or information leaks.

CCleaner, Pokemon Go, Meitu, and Uber have all come under fire for privacy-related issues in the past and the problem of data collection and extended business permissions will likely carry on in the future.

To be on the safe side, any time you no longer need an application, you should also simply uninstall it.

Mobile malware


Mobile malware is far from as popular as malicious software that targets desktop machines but with these variants infecting Android, iOS, and sometimes making their way into official app repositories, they are worth a mention.

The types of malware that can hit your mobile device are varied, from Trojans and backdoors to malicious code that focuses on the theft of valuable information, such as online banking credentials.

The most common way that such malware can infiltrate your smartphone is through the installation of malicious apps, which may actually be malware, spyware, or adware in disguise.

It’s recommended that you download and install an antivirus software solution for your mobile device, however, you will probably be safe enough as long as you do not jailbreak your phone and you only download app .APKs from trusted sources, such as Google Play or the Apple App Store. However, malicious apps do sneak into these official stores as well. 

Also: Android security: Malicious apps sneak back into Google Play | Are enterprise app users growing more security savvy?

Secure email


Many email providers now encrypt email in transit using TLS, but there are few email services, if any, which you can truly consider 100 percent “secure” due to government laws, law enforcement powers, and the difficulty of truly implementing strong encryption in email inboxes beyond using PGP to sign messages.

However, ProtonMail is worth considering. The open-source email system is based in Switzerland and therefore protected under the country’s strict data protection laws. Emails are end-to-end encrypted which prevents ProtonMail — or law enforcement — from reading them. In addition, no personal information is required to open an account.

Also: These are the 12 most common phishing email subject lines | Phishing alert: One in 61 emails in your inbox are scams

Reduce your online footprint


Now that you’ve begun to take control of your devices, it is time to consider what data is floating around the internet that belongs to you — and what you can do to prevent future leaks.

One of the first places to travel to is Troy Hunt’s HaveIBeenPwned service. The free search engine (of sorts) can be used to check your email accounts and linked online services for the exposure of credentials caused by data leaks. If you find you have been ‘pwned,’ stop using all the password combinations involved immediately — not only in the case of the compromised account but across the board.

Google privacy checks

If you are a user of Google services, the Privacy checkup function can be used to stop Google from saving your search results, YouTube histories, device information, and for you to decide whether you are happy for the tech giant to tailor advertising based on your data.

Make sure you also take a look at your main Google Account to review security settings and privacy measures. The Security checkup page also shows which third-party apps have access to your account and you can revoke access as necessary.

Also: Tired tech workers lose 27 hours of sleep per month | How to use Google’s Digital Wellbeing TechRepublic

Social networks


Social networks can be valuable communication tools but they can also be major sources of data leaks. It is not just friends and family that might be stalking you across social media — prospective employers or shady characters may be doing so, too, and so it is important for you to lock down your accounts to make sure only the information you want to be public, is public.

Facebook

To begin locking down your account, go to the top-right corner, click the downward arrow, and choose “Settings,” which is where the majority of your options for privacy and account safety are based.

Security and login

Under this tab, you can choose to enable 2FA protection, view the devices in which your account is actively logged on, and choose whether to receive alerts relating to unrecognized attempts to log in.

Your Facebook information

Review activities: Under Activity Log, you can review all your activity across the social network, including posts published, messages posted to other timelines, likes, and event management. You can use the “edit” button to allow something on a timeline, hide it, or delete it outright — a handy function for wiping clean your older timeline.

Download data: Under this tab, you can choose to download all the data Facebook holds on you.

Privacy Settings and Tools: Here, you can choose who can see your future posts. For the sake of privacy, it is best to set this to friends only, unless you are happy for such content to automatically be made public.

How people can find and contact you: You can tighten up your account by also limiting who can send you friend requests, who can see your friend lists, and whether people are able to use your provided email address or phone number to find your profile. A particular feature you may want to turn off is the ability for search engines outside of the network to link to your Facebook profile.

screenshot-2019-03-19-at-15-52-47.png

Location: Turn off this to prevent Facebook from gathering a log of your location history.

Face recognition: Another feature you should consider turning off — it’s unnecessary.

Apps and websites: Under this tab, you can see a list of third-party services that have been logged into using your Facebook credentials and whether they are active.

Ad Preferences, advertisers: A settings option that has been heavily expanded upon since the Cambridge Analytica scandal, in this section, you can review what Facebook believes are your interests, a list of advertisers that “are running ads using a contact list that they or their partner uploaded which includes information about you,” and you can manage personalized ad settings — at least, to a point.

Your interests: If you select this tab you will see topics, such as property, finance, food, and education, which are collated based on ads or promotional material you have previously clicked on. In order to remove a topic, hover over the option and select the “X” in the top right. The same principle applies to the “Advertisers” tab.

Your information: There are two tabs here that are both relevant to your online privacy and security. The first tab, “About you,” allows you to choose whether Facebook can use your relationship status, employer, job title, or education in targeted advertising. The second tab, “Your categories,” includes automatically generated lists of topics that the social network believes are relevant for ad placement — all of which can be hovered over and removed.

Ad Settings: To further thwart targeted ads, consider saying no to all the options below.

screenshot-2019-03-19-at-16-11-17.png

Another section to mention is under the “About Me” tab in Facebook’s main account menu. Here, you can choose whether to make information public (whether globally or to your friends), or only available to you. This information includes your date of birth, relationship status, contact information, and where you’ve lived.

Twitter

Under the “Settings” tab there is a variety of options and changes you should implement to improve the security of your account.

Login verification: After you log in, Twitter will ask you for additional information to confirm your identity to mitigate the risk of your account from being compromised.

Password reset verification: For added security, this requires you to confirm your email or phone number while resetting your password.

Privacy and safety: You can deselect location tracking and stop your locations being posted at the same time you send out a tweet, and there is also an option for removing all past location data from published tweets in your history.

In this section, you will also come across “Personalization and data,” which allows you to control — to an extent — how the social network personalizes content, collects data, and what information is shared with third-parties. You have the option to choose not to view personalized adverts, but the main setting you need to be aware of is for sharing.

Described by Twitter as an option to permit the company to “share non-public data, such as content you’ve seen and your interests, with certain business partners for uses like ads and brand marketing,” you should consider saying no.

Apps and devices: Under this tab, you can see what third-party services, if any, are connected to your account, as well as what devices your Twitter account is actively logged into.

There is also an interesting section under “Your Twitter data.” Once you have entered your password, you can see Twitter’s compiled collection of interests and advertising partners based on your activities.

It is also possible to request your full data archive under the main Settings tab.

Instagram

To give your Instagram account a privacy boost, there are a few changes you can implement.

By default, anyone can view the photos and videos on your Instagram account. By going to Settings and then Account Privacy, you can change this to ensure only those you approve of can see your content.

If your account is public, then anyone can view and comment on your images and videos. However, you can block people you would rather not interact with.

Also: Nonplussed: Why I’ll miss Google+ | Picture password: Are squiggles the future of security?

The Internet of Things


The Internet of Things (IoT) started off with mobile devices, including our smartphones, tablets, and smart watches. Now, IoT encompasses everything from smart lights to voice-controlled smart speakers and home hubs, such as Google Home and the Amazon Echo.

Here are some tips to improve the security of your connected home and prevent your products from being compromised, your information stolen and your IoT products from being added to botnets:

  • Keep IoT devices password protected. Default credentials — unfortunately often still in play when it comes to IoT vendors — are an easy way for hackers to compromise a device. The first and easiest way to protect your devices is to change these credentials ASAP.
  • Making sure your IoT device firmware, as well as your router software, is to up-to-date is also a key factor.
  • Consider running all your IoT devices on a separate home network. Therefore, in the case of compromise, the damage can be limited.
  • If your IoT device does not require an internet connection to run, then disable it. (Unfortunately, this is rare nowadays)
  • If you no longer need an IoT device or have upgraded, perform a factory reset and remove older devices from your network.
  • Always check the default settings on new products. It may be that default options — such as the implied consent for usage data and metrics to be sent to the vendor — will benefit the vendor, but not your privacy.

Just do it

The threats to our privacy and security are ever-evolving and within a few short years, things can change for the better — or for the worse. It is a constant game of push-and-pull between governments and technology giants when the conversation turns to encryption; cyberattackers are evolving and inventing new ways to exploit us daily, and some countries would rather suppress the idea of individual privacy, rather than protect it.

Thankfully, the threat to our privacy has now been acknowledged by technology companies and many organizations, both for and non-profit, have taken it upon themselves to develop tools for our use to improve our personal security — and it is now up to us to do so.



Source link

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Cars

The green future of big rigs is almost here

Published

on

Anyone who has driven the highways in their part of the country has seen semi-trucks out delivering goods and other items. The semi-trucks you see on the roads today are powered by massive diesel engines able to run for a million miles or more. With the federal mandates attempting to push people from traditional combustion-engine vehicles to EVs, the same pressure is being felt by manufacturers of large heavy-duty trucks and large fleet owners. Several of the largest manufacturers in the semi-truck market are hard at work on electric vehicles and other zero missions technologies for the future, and here are some of their trucks.

Tesla Semi

When it comes to electric cars for the masses, Tesla is the undisputed leader of the industry at this time. While Tesla is mostly known for its fully electric cars and SUVs, it’s also working on the Tesla Semi, a fully electric semi-truck for hauling loads. While this truck has been delayed multiple times, it will eventually come to market, and it promises an electric driving range of 300 or 500 miles depending on the version chosen. Tesla has promised that the vehicle will consume less than 2 kWh of electricity per mile driven.

The Tesla Semi has an expected base price of $150,000 for the version with 300 miles of driving range and an expected base price of $180,000 for the 500-mile range version. While those prices sound very high, they are right in the normal range of diesel-powered semi MSRPs today. A brand-new diesel-powered semi from any manufacturer will be over $150,000, with some specialized trucks costing more than twice that.

Freighliner eCascadia

When it comes to popular trucks operated by large fleet owners and owner-operators, one of the most popular trucks out there is the Freightliner Cascadia. Freightliner has been working on a fully electric version of the Cascadia, known fittingly as the eCascadia. Freightliner’s eCascadia is a Class 8 big rig with between 360 and 500 horsepower depending on the version chosen. It can carry a maximum gross cargo weight of 82,000 pounds and has an electric driving range of 250 miles.

Usable energy capacity is up to 475 kWh, and perhaps most importantly, the eCascadia can charge to 80 percent capacity in 90 minutes. A typical semi-truck being used for local or over-the-road applications can be driven by a single driver for up to 11 hours and can travel hundreds of miles during that time. Fast recharging is critical to the success of electric big rigs. Freightliner doesn’t mention pricing on the eCascadia, but an average cost for a normal Cascadia today is around $165,000.

International NEXT eMobility Solutions

Another manufacturer of heavy-duty trucks for a variety of purposes is International. International hasn’t given a specific name for its electric trucks, but they all fall under its NEXT eMobility Solutions umbrella. What we know about International’s project is that its electric vehicle will have a 645 horsepower peak and 402 horsepower continuous. Peak torque will be 2102 foot-pounds with continuous torque at 1549 foot-pounds.

International offers three different battery capacity options, including eMV Base with 107 kWh, eMV Mid with 214 kWh, and eMV Max with 321 kWh. The company does point out that the eMV Max version is only applicable for certain chassis specifications. Much about International’s electric offerings is a mystery at this point.

Peterbilt

Peterbilt is one of the most popular manufacturers of semi-trucks and other heavy-duty and medium-duty trucks around. Peterbilt has multiple fully electric trucks for different uses coming, including the 220EV design for pickup and delivery, regional haul, and food and beverage applications. This is a small straight truck which means the cargo area is attached to the same frame as the tractor in the front. It offers a range of up to 200 miles.

Peterbilt’s electric semi-truck is the 579EV, which uses a day cab configuration. For those who might not know, a day cab is a big rig that doesn’t have a sleeper in the back typically used for local operations where the driver doesn’t sleep in the truck. Peterbilt says the 579EV is designed for short-haul and drayage applications.

The last of the electric trucks that Peterbilt is making is the Model 520EV designed for commercial and residential trash pickup. Peterbilt doesn’t offer any specifications on its electric big rigs at this time, so we don’t know battery capacity or driving range. It’s also worth noting that Peterbilt trucks tend to be some of the most expensive you can buy, typically costing more than other brands such as Freightliner.

Kenworth

Another of the very popular manufacturers of semi-trucks is Kenworth. Kenworth has a semi called the T680E, a fully electric Class 8 big rig. Kenworth says this model has an estimated operating range of 150 miles depending on the application. The T680E is compatible with a CCS1 DC fast charger offering a maximum charge rate of 120 kWh and an estimated 3.3-hour charging time.

Kenworth’s electric semi has 536 continuous horsepower and 670 horsepower. It produces 1623 pound-foot of torque, giving it plenty of towing power. Both Kenworth and Peterbilt are owned by the same PACCAR parent company, so specifications for the Peterbilt electric truck could be similar. Pricing for the T680E is unannounced, but much like Peterbilt, Kenworth trucks tend to cost more than competitive offerings from Freightliner and others.

Nikola Two and Tre

One of the more interesting zero-emissions options out there when it comes to semi-trucks comes from Nikola. Nikola has two zero-emissions models, including the Nikola Two and Nikola Tre. The Two is very different from the other zero emissions offerings because it uses a hydrogen fuel cell rather than relying on battery packs alone. The Nikola Tre is a battery-electric vehicle.

When looking at the hydrogen fuel cell Two, it is emissions-free, relying on hydrogen to produce electricity to operate the vehicle. Not long ago, Nikola confirmed that it had signed a hydrogen infrastructure agreement with TC Energy that will see the two firms roll out hydrogen fueling infrastructure along major trucking routes around the country.

The major benefit to hydrogen fuel cells for powering semis is that they can run near continuously, just as a traditional diesel-powered vehicle does. The major hurdle to overcome for any hydrogen fuel cell-powered vehicle is the hydrogen infrastructure.

The Nikola Two has a driving range of up to 900 miles and can refuel completely in 20 minutes. Its driving range and fueling time are very similar to current diesel-powered big rigs. The truck offers 645 continuous horsepower, and Nikola expects the Two to be available in 2024.

The Nikola Tre BEV has a driving range of up to 350 miles per charge thanks to its 753 kWh battery pack. It can be recharged from 10-percent to 80-percent in 120 minutes utilizing a 240kW charger. The electric vehicle has 645 continuous horsepower.

Can EV or Fuel Cell Semis Replace All Diesel Semis?

Now that we’ve talked about some of the zero-emissions semi-trucks that will be available from various manufacturers, it’s worth taking some time to talk about how practical these trucks will be in all aspects of commercial trucking. Note that all of these electric and fuel-cell-powered semi-trucks are intended for local and short-haul trucking.

While local and short-haul trucking constitutes a large portion of the commercial trucking industry, the technology isn’t there today to allow the zero-emissions big rigs to take over the industry completely. The problem for trucking companies and drivers is downtime for charging. Trucking companies and drivers don’t make money if their truck isn’t rolling.

In some applications, diesel-powered semi-trucks are cruising the roads around the US for up to 22 hours at a time. In many time-sensitive applications, trucking companies run team drivers. Each driver can spend 11 hours behind the wheel, and with a team of two, the truck can run for 22 hours at a time. Ideally, as a semi pulls into a hub, they’re unloading the trailer they’ve been towing and immediately pick up another load and head back out on the road. Having a long recharge time and limited driving range simply won’t work for long-haul trucking.

Assuming Nikola can roll out a hydrogen fueling infrastructure that could serve all major trucking routes, its technology seems to have the best chance of replacing traditional diesel-powered trucks. The driving range and refueling time are close enough to modern diesel trucks that hydrogen fuel cell semis could replace diesel trucks with no change to how truckers and trucking companies operate. Of course, a breakthrough in battery capacity or charging speed could eliminate the downsides of electric rigs.

Continue Reading

Cars

Like to shift gears? Here are some vehicles you can still get with a manual transmission

Published

on

Years back, it was easy to find vehicles with manual transmissions. Most models had a budget-friendly manual-transmission option that many people chose for fuel economy. In modern times, automatic transmissions are more fuel-efficient, and people who know how to drive a manual and choose that type of transmission are declining.

You might think that only sports cars aimed at enthusiasts would come with manual transmissions today, and while they do, other non-enthusiast rides still allow you to row your own gears. For anyone looking for a vehicle, be it a car or SUV with a manual transmission, this list runs down some of the coolest rides available today with three pedals. This list is in no particular order.

BMW M3/M4

BMW is still making sports cars with three pedals, and among the most popular of its builds are the M3 and M4. Both of these rides can be had with a manual or automatic, but they’re among the more pricey options on the list. A basic BMW M3 Sedan starts at $69,900 and quickly goes up from there, depending on options. Anyone looking for the M3 Competition xDrive version will start at $76,900.

BMW’s M4 Coupe starts at $71,800 and goes all the way up to $78,800 for the Competition xDrive. These rides offer between 473 horsepower and 503 horsepower, depending on the configuration, with 0 to 60 MPH times ranging from 4.1 seconds to 3.8 seconds. Unfortunately for the current model year, BMW has a rather controversially styled front end with massive grill openings that some fans dislike.

Nissan Versa S

Anyone who remembers the Nissan Versa from years past probably remembers a cheap car that offered good fuel economy with rather unattractive styling. That all changed in 2020 when Nissan completely redesigned the Versa, turning it into a very attractive car that is still quite affordable with excellent fuel economy.

While most versions of the Versa come with an Xtronic CVT transmission, the basic Versa S can be had with a five-speed manual. It’s one of the most affordable vehicles in the country, starting at $14,980. For the price, not only do you get to row your own gears, but you also get automatic emergency braking with pedestrian detection, lane departure warning, high beam assist, and rear automatic braking. You could buy five Nissan Versa S cars for the price of one BMW M4.

Mazda3 Premium

Mazda is a more premium brand today, even though you don’t see many of them on the highway. The 2021 Mazda3 Premium hatchback starts at $28,000 and can be had in front-wheel-drive with a 6-speed manual transmission.

Interestingly, the all-wheel-drive version is only available with the automatic, and all other trim levels only come in automatic. Starting at $28,000, it’s a more expensive but still affordable car offering 186 horsepower and 186 pound-foot of torque. As we mentioned before, the manual transmission gives up fuel economy, with the all-wheel-drive automatic offering more miles per gallon.

In the city, the manual version gets 24 MPG compared to the automatic all-wheel-drive getting 25 MPG. The automatic front-wheel-drive gets 26 MPG in the city. Fuel economy between the transmission options is close, and odds are the average driver wouldn’t notice a difference between the manual and the automatic.

Jeep Wrangler

Anyone looking for an SUV with off-road chops will be familiar with the Jeep Wrangler. Most Wrangler trims are available with a six-speed manual transmission. Off-road enthusiasts often choose the manual transmission because they like the control it gives them on the trails.

The Wrangler certainly isn’t an inexpensive SUV, but all of them come with four-wheel drive and are capable of hitting the trails right off the showroom floor. Jeep offers the Wrangler in two-door or four-door versions. The most affordable is the Wrangler Sport, with the two-door starting at $29,070 and the four-door starting at $32,570.

The most expensive Wrangler is the Rubicon 392, featuring a big V-8 engine under the hood starting at $74,640, but it’s only available with the eight-speed automatic. However, you can get the normal Rubicon with a Manual transmission starting at $43,265 for the four-door version.

Ford Bronco

A new and very popular competitor to the Jeep Wrangler is the Ford Bronco. Like the Wrangler, the Bronco can be had with a manual transmission. The Base Ford Bronco starts at $29,300, including standard 4 x 4 and 7-speed manual transmission in the two-door model.

That manual transmission is standard on the Base, Big Bend, Black Diamond, and Badlands trim levels. If you step up to the four-door version, it starts at $33,450, and the manual is available in the same trim levels as the two-door. Unfortunately, the Ford Bronco has proven so popular that it is next to impossible to get one and will remain that way for the foreseeable future. Those who do find one at a Ford dealership are likely to pay massive markups.

Ford Mustang

We expect a manual transmission to turn up in a muscle car or sports car, and Ford doesn’t disappoint. The Ford Mustang has always been available with a manual transmission, and the current generation offers a six-speed manual.

The manual transmission can be had in the V8-powered GT or the EcoBoost-powered version. The only Mustang that doesn’t offer a manual transmission is the high-end Shelby GT500 and the Mach-E GT (which enthusiasts hardly count as a Mustang). The EcoBoost Fastback starts at $27,205, while the cheapest GT fastback starts at $36,285, both featuring the six-speed manual transmission. The Mustang Mach 1 starts at $53,400 with the standard six-speed manual transmission.

Chevy Spark

Those looking for a very inexpensive commuter car with a manual transmission won’t find anything cheaper than the 2022 Chevrolet Spark. The LS Manual features a 1.4-liter four-cylinder Eco-Tech engine backed with a five-speed manual transmission. The car starts at $14,595.

Chevy also offers a manual option for the 1LT version starting from $16,495, and the Activ manual version starts at $17,595. The 2LT with a manual starts at $17,995. The Spark is one of the cheapest new cars in the country, and its price is often less than a used vehicle. However, its diminutive size and styling aren’t for everyone.

Subaru WRX

Subaru offers manual transmissions in several of its vehicles, including some of its crossovers. One of the most popular manual transmission models Subaru makes is the iconic WRX. The base model 2021 WRX with a six-speed manual starts at $28,420.

The hotter WRX STI starts at $37,245. However, the six-speed manual used in STI models is a close-ratio unit. Aside from the STI version, Subaru does offer CVT automatics as well. One caveat with Subaru is if you choose a manual transmission, you can’t get its EyeSight safety system.

Wrap Up

This list runs down some of the vehicles available in 2021 with manual transmissions. This is certainly not an all-inclusive list, with several other manual transmission cars, SUVs, and trucks available. For some people, a manual transmission is the only way to go, while for others, it’s simply a way to get the vehicle’s purchase price down as low as possible.

Whatever the reason you’re looking for a vehicle with a manual transmission, we hope people buy them. If the manual transmission option isn’t popular enough, we could see them disappear in many models and we’d hate to see that happen.

Continue Reading

Cars

Volvo wants to make the whole windshield a smart AR display

Published

on

Over the last several years, there has been a significant push in the automotive industry to prevent distractions that force drivers to look away from the road to operate their vehicle’s systems. This drive has ushered in a number of features in modern cars, such as voice control systems for infotainment and other car functions. Increasingly common are head-up displays, that project information like speed and other data in an area of the windshield that the driver can see, without taking their eyes off what’s directly ahead.

Volvo Cars has a long history of debuting new safety technology for vehicles that often trickles down to other automakers over time. The company has announced that it has invested in an optical imaging startup company called Spectralics. Volvo says the company is working on a “promising technology” that the company admits is at an early stage of development. However, the new technology could make vehicles much safer and help to improve the in-car experience for drivers.

Spectralics is working on a thin optics film that can be applied to see-through surfaces of all shapes and sizes, such as windshields and windows in of a car. The film is a multi-layer thin combiner (MLTC) that allows imagery overlay on windows or the windshield. Essentially, it turns the entire windshield surface into a transparent head-up display with significantly more capability than any HUD available in vehicles today.

As Spectralics explains it, when its MLTC is used on a car’s windshield, it creates an extra-wide field of view for the digital overlay, in the process providing drivers a sense of distance with virtual objects superimposed on the real-world environment. The technology could include advanced filters for in-cabin sensing, blind-proof front-looking cameras, and digital holographic projections. Volvo only offered a single image with the announcement that it invested in Spectralics, though it’s enough to get us excited about what could potentially come to future models should the investment pay off.

It shows a windshield able to highlight road markings, signs, and any potential obstacles in the road. The overlay, for example, highlights a moose potentially in the path of the vehicle on the left-hand side, and shows speed and other vehicle data along the bottom of the windshield. The promise of blind-proof cameras seemingly indicates the film would be able to take information from cameras able to see in the dark or fog, and overlay their imagery on the windshield.

It’s easy to understand how this capability could benefit drivers, particularly in extremely dark areas or in dense fog. Driving in fog is one of the most hazardous conditions drivers face as visibility can be limited severely. Another big benefit of providing imagery from cameras would be in whiteout situations during intense snowstorms. For those who have never driven in extremely heavy snow, it’s often impossible to see very far in front of the vehicle. Stopping could mean being stranded in the mountains without assistance, not to mention potentially being rear-ended by other drivers on the road.

Volvo’s investment was made to the Volvo Cars Tech Fund. The Head of the fund, Lee Ma, said the investment results from the company’s successful collaboration with MobilityXlab and DRIVE; Ma says that the fund believes Spectralics’ technology could set the standard for next-generation displays and cameras. As interesting as the technology is, some significant questions are unanswered at this time.

One of the biggest is how expensive the technology will be, and how easily – if at all – it can be transferred to another windshield during a replacement. That’s a burning question for those who live in cold-weather states, where roads tend to deteriorate rapidly. Anyone living in a cold-weather state like Colorado, for instance, knows that the thawing and freezing action of water seeping into cracks in the road tends to cause the roadway to break down in relatively short order.

Couple that freeze and thaw cycle with intense traffic, and lots of small pebbles and gravel are constantly being generated. They’re routinely thrown into the air at high speed by vehicles traveling over them, meaning an extremely high likelihood of a broken windshield. Frequently extreme differences in temperatures at night and during the day, meanwhile, also mean that what starts out as a small chip that could be easily repaired in the morning, can sometimes be a crack running across the entire windshield by the afternoon.

How much this type of technology would increase the price of the windshield will be a barrier to the technology. Many automotive insurers won’t write traditional glass breakage coverage in cold-weather states, because broken windshields are so common. USAA, for example, won’t write a no-deductible glass breakage plan as you can get in warmer states like Texas. Instead, it covers a broken windshield on your comprehensive coverage, meaning you have to pay that comprehensive deductible if you want the windshield replaced.

Having recently replaced the windshield on a 2020 Jeep Renegade, the replacement price for a non-factory windshield was around $300. It’s also worth noting that you can be ticketed in some states if you’re driving a vehicle with a crack that runs the driver’s field of view. What that would mean is if, instead of a few hundred dollars, the Spectralics technology pushes the cost of the windshield into the thousands, it could be quite a burden to replace a windshield in a vehicle equipped with technology.

Perhaps the film attaches to a windshield in a way that can be simply removed and applied to the new window, but that is unclear. Another potential workaround for the issue of cracked windshields featuring this type of technology would be to use stronger glass. The glass covering the LCD for smartphones is often Gorilla Glass from Corning, and indeed we’ve seen some vehicles made available from the factory with windshields made of Gorilla Glass that is far more robust than traditional windshield glass. Again, of course, the risk we run with utilizing stronger glass for the windshield is an additional cost. The Spectralics technology is exciting and could make vehicles safer, but we can’t help but wonder what impact it might have on the long-term price of the car.

Continue Reading

Trending