Author: Security – Computerworld

My spur-of-the-moment Chromebook surprise

If you’ve read this column for long, you probably know that when it comes to tech purchases — and tech decisions in general, really — I’m typically not one to be hasty.

It’s practically in my blood at this point. I’ve spent so many years studying, researching, and obsessing over this stuff (both personally and professionally!) that it’s tough for me to commit to buying a new product or even using a new service without really digging in and thinking through the implications.

Plain and simple, I like to feel confident that whatever I’m using is not only “the best” in some broad, general sense — but is, critically, the best for me and my specific work purposes. It’s the same thing I encourage everyone else to do, too, when considering new tech twists and turns (whether via my own recommendations or any other source).

That’s why I really surprised myself when I happened to be walking through a Best Buy the other day and ended up walking out with a brand spankin’ new $600 laptop — a Chromebook, to be specific.

But Goog almighty, am I ever glad I made that uncharacteristically fast decision.

[Get fresh Googley insight in your inbox with my free Android Intelligence newsletter. Three new things to know and try each Friday!]

Google’s Pixelbook and my ChromeOS journey

Before I get to the specific Chromebook I purchased and why, let me back up real quick for a pertinent bit of perspective.

I’ve been both using and writing about Google’s ChromeOS platform since its very earliest days — back before the devices around it were even called Chromebooks.

I’ve personally owned and relied on Google’s precious Pixelbook since that device’s debut in 2017. While I’d had plenty of other ChromeOS vessels before it, the Pixelbook was the first Chromebook I truly fell for — thanks to its rare combination of power, practicality, and design. The device’s sleek and minimalist form and in-a-league-of-its-own keyboard made it a singular treat to use and served as the perfect match for the more-than-capable computing power inside.

Google Pixelbook (ChromeOS Chromebook)
The Google Pixelbook Chromebook, released in 2017.

Google

For years, the Pixelbook left me with little to ask for. But despite the fact that the laptop is still technically being supported with regular ongoing ChromeOS updates — and will continue to be all the way through August of 2027 (!) — the system has more recently started showing its age.

I’ve been thinking about a replacement for it for a while now. But while I’ve tried out tons of perfectly capable and decent Chromebook options, I’ve yet to find one that really speaks to me and stands out in the same way.

The reason, I’ve come to realize, is that more and more, current Chromebooks are mostly about being good enough. For most people and purposes — whether businesses, schools, or just budget-conscious individual device-buyers — that’s perfectly fine and probably makes a lot of sense. But for those of us who place an emphasis on design and device quality both inside and out, the options have been a little lackluster lately. And so despite my motivation to find a suitable replacement for my rapidly aging Pixelbook, nothing I’ve considered had quite fit the bill.

At least, that was the case — until an alluring new digital vixen caught my eye. And, as you’ve no doubt realized by now, it didn’t take long to realize it was the one I’d been waiting for.

ChromeOS, take 2: My next Chromebook chapter

I’d been intrigued by the new Samsung Galaxy Chromebook Plus since I first heard about it ahead of its arrival this autumn. But it wasn’t until I spent several minutes with the system in a physical store that I realized just how special it actually was — and how much it filled the void I’d been seeking to satisfy since my poor Pixelbook started growing a little rusty.

So, first things first: The Samsung Galaxy Chromebook Plus is far less clunky than its awkward name suggests. It’s sleek and almost shockingly minimal in its design — with an eye-catchingly subtle blue casing and an understated Samsung logo on the outer cover but no branding of any sort on the inside. (One of my biggest tech-nerd pet peeves is paying hundreds of dollars for a device and then being forced to stare at an ugly company tramp stamp right atop or beneath the screen for every second that I use the damn thing.)

Samsung Galaxy Chromebook (open)
Samsung’s Galaxy Chromebook Plus is refreshingly sleek and free from over-the-top branding.

Samsung

That alluring appearance is definitely what drew me in. But the way the Chromebook feels is what ultimately won me over.

No two ways around it: The Galaxy Chromebook Plus is a skinny fella. This thing is thin in a way I haven’t experienced on a laptop since — well, the Pixelbook.

Samsung Galaxy Chromebook (closed)
Thin is in with Samsung’s Galaxy Chromebook Plus.

JR Raphael, IDG

In a sharp-as-can-be contrast to the typical utilitarian Chromebook of our current moment, the Galaxy Chromebook Plus feels light and luxurious. It’s a body that makes you want to carry and, dare I say, caress it constantly. All over-the-top tenderness aside, it’s a premium computer through and through and the closest thing I’ve seen to a spiritual successor to Google’s fading Pixelbook star.

Now, do all those surface-level superficialities matter, you might ask? As with so many things in the tech decision-making matrix, the answer depends entirely on you. Some people are perfectly satisfied with a utilitarian tech approach and knowing that their laptop has what counts on the inside — and hey, that’s okay! But some of us also appreciate the design and form and how those factors affect the overall experience of carrying and using a device.

And my goodness, when it comes to the Galaxy Chromebook Plus, is that experience ever exceptional.

The sweet surprise of Samsung’s Galaxy Chromebook Plus

No exaggeration: Samsung’s Galaxy Chromebook Plus is just a delight to work on — a true treat that makes you want to carry it everywhere and never put it down. The display is an AMOLED panel, which results in richer colors and deeper blacks than most standard laptop screens, and the 15.6″ display size is such a pleasant change after years of squeezing into smaller laptop dimensions. That arrangement also includes the side perk of a larger, less cramped keyboard, complete with a number pad at the right.

Samsung Galaxy Chromebook (keyboard)
Even the keyboard is unusually roomy on the Galaxy Chromebook Plus.

Samsung

All in all, the Galaxy Chromebook feels lavishly spacious, and the slim frame keeps it from seeming at all bulky or even the least bit unwieldy. The whole “thin” race can slide into silly territory quickly, but I’m tellin’ ya: This laptop’s slimness is such a sweet surprise and something you really do appreciate. It’s an absolute pleasure to use — and, provided your budget can support it, adding that pinch of pleasure into your workday can make a world of difference when it comes both quality of life and productivity.

I’m also happy to share that the qualities of the Galaxy Chromebook that gave me pause early on haven’t proven to be particularly problematic in real-world use: 

  • I worried that the system’s 8GB of RAM might be insufficient for my multitasking-heavy, resource-intensive style of work — but so far, at least, the computer’s been quite capable of handling anything I throw at it.
  • As reported, Samsung has been permitted to preload some of its own apps on the Chromebook — something that hasn’t traditionally been permitted in the ChromeOS ecosystem — but outside of the presence of a single preinstalled Samsung Notes app (which, thankfully, can easily be removed), there hasn’t been anything out of the ordinary or concerning.
  • And while Google’s move to replace the signature ChromeOS Launcher/Search/Everything key with a weird new Gemini-connected “Quick Insert” key still strikes me as misguided, it’s an easy enough change to work around for anyone in the know. In fact, a quick tweak of the system keyboard settings is all it takes to restore the Launcher key to its proper position and to bump “Quick Insert” down to the keyboard’s bottom row, in a newly added “G” key that seems like a much more sensible spot.
Samsung Galaxy Chromebook — ChromeOS keyboard settings
The Search/Launcher/Everything key can be returned to its proper place with a couple quick clicks in the ChromeOS settings.

JR Raphael, IDG

After growing accustomed to having a convertible Chromebook that sports a touchscreen, I’d also been hesitant to go with a model that’s more of a traditional clamshell form without any touch capabilities. But over the past year or so, I’ve added a Pixel Tablet into my personal tech lineup and started relying on that for more casual video-watching and other such “lean-back”-style activity. This has pushed the laptop back into a more narrowly defined role of active keyboard-involving work for me, and consequently, I don’t find myself missing the touch and converting factors much at all — certainly nowhere near what I would’ve expected if I’d considered this same shift a couple years ago.

The only big question lingering in my mind now is what’s in the cards for ChromeOS from a longer-term perspective. As you may have read, rumors suggest Google could be looking at essentially replacing ChromeOS with Android — yes, again — or at least replacing it with some future version of Android that’s designed to provide a similar sort of desktop-friendly computing experience.

While I have my doubts about how effectively Google can pull such a feat off, I’m cautiously optimistic that a ChromeOS-Android combo could actually be a good thing at this point — and, potentially, could even be less of a drastic front-facing change than most of us might expect.

But regardless, if such a move ends up happening — and to be clear, that’s still a hefty “if” at this point — it’s almost certainly still years away. For now, I very much enjoy using ChromeOS in its current form. This laptop is guaranteed ongoing operating system updates through June of 2032, at a minimum, and one has to imagine that if Google were to start bringing a future Android version into Chromebooks down the line, it’d phase that change in gradually and avoid or at least make optional any sort of dramatic switch in how existing devices operate.

Long story short, I’m not too worried about what ChromeOS (or whatever we’re calling it) might look like a decade from now. If it stays the current course — hey, cool. I’m content! If an enticing option comes along to shift over to a more Chromebook-like version of Android in the future, maybe that could be interesting, too. For the moment, though, I couldn’t be happier with the laptop I’m using.

And, remember: This is coming from someone who had been stubbornly hanging onto his aging Pixelbook and refusing to accept any of the alternatives that had come along in the years since.

For now, this Chromebook is the one to beat. And this is the first time in a long time I’ve felt fully confident saying that — confident enough to pick up this system myself and happily head home with it the very same day I touched it for the first time.

Want even more Googley goodness? Come check out my free weekly newsletter to get next-level tips and insights delivered directly to your inbox.

Canada sues Google over alleged anticompetitive practices in online advertising

The Competition Bureau of Canada has filed an antitrust lawsuit against Google, accusing the tech giant of abusing its dominant position in the online advertising technology market to stifle competition and harm advertisers, publishers, and consumers.

The case, filed with the Competition Tribunal, is the latest in a series of global legal challenges targeting Google’s advertising practices.

The Bureau announced on Thursday that it had filed an application with the Competition Tribunal, seeking an order that would compel Google to sell two of its advertising technology tools and impose a penalty to ensure compliance with Canadian competition laws.

“The Competition Bureau conducted an extensive investigation that found that Google has abused its dominant position in online advertising in Canada by engaging in conduct that locks market participants into using its own ad tech tools, excluding competitors, and distorting the competitive process,” Commissioner of Competition Matthew Boswell said in a statement.

According to the watchdog, Google holds the largest market share across Canada’s ad tech stack and has “abused its dominant position” to entrench its market power.

Allegations of market abuse

The Bureau’s investigation alleges that Google has entrenched its dominance across the ad tech stack — a suite of tools that facilitates the buying and selling digital ad inventory. The Bureau asserts that Google unlawfully tied its ad tech tools together and leveraged its dominant position to distort auction dynamics. These actions reportedly forced market participants to rely on Google’s ecosystem, excluded competitors, and disrupted fair competition.

“Google’s conduct has prevented rivals from being able to compete on the merits of what they have to offer, to the detriment of Canadian advertisers, publishers, and consumers. We are taking our case to the Tribunal to stop this conduct and its harmful effects in Canada,” Boswell added.

The Bureau further claims that Google gave its own tools preferential access to advertising inventory, manipulated pricing to disadvantage rivals, and imposed restrictive terms on publishers transacting with competing platforms.

The Competition Bureau has asked the Tribunal to order Google to divest two of its ad tech tools, impose penalties to ensure compliance with Canada’s Competition Act and prohibit the company from continuing anti-competitive practices.

The Bureau’s investigation, which began in 2013, initially focused on Google’s search engine practices but expanded earlier this year to include its advertising technology services.

A request seeking comment from Google remains unanswered.

Parallel cases in the US and India

The Canadian lawsuit echoes similar antitrust challenges Google is facing globally, including in the US. The US Department of Justice (DOJ) recently concluded closing arguments in its antitrust case against Google, accusing the company of illegally dominating the online advertising market.

In its trial, the DOJ alleged that Google monopolized key ad tech markets, including publisher ad servers and advertiser ad networks, and sought to dominate ad exchanges. Prosecutors argued that Google’s practices “rigged the rules of the road,” preventing fair competition. Google countered by emphasizing the competitiveness of the online ad market and dismissed the DOJ’s claims as mischaracterizations of legitimate business decisions.

Meanwhile, in India, the Competition Commission of India (CCI) on Thursday ordered a probe into Google’s restrictive policies for real-money gaming apps. The investigation follows a complaint from the gaming platform WinZO, which accused Google of discriminatory practices by excluding it from the Google Play Store while allowing competitors.

In 2022, the Indian authority imposed a monetary penalty of around $300 million on the search engine major for various anti-competitive practices.

A global spotlight on Google’s practices

Earlier this month the US DOJ has recommended extensive measures to limit Google’s dominance, including the potential breakup of its Chrome browser and Android operating system. These products are pivotal distribution platforms for Google Search, which was deemed an illegal monopoly in Federal Judge Amit Mehta’s August ruling.

These cases collectively highlight the increasing scrutiny of Google’s practices worldwide as regulators seek to address concerns about its dominance across various markets, including online advertising, app ecosystems, and gaming platforms.

For Google, the stakes remain high, as these lawsuits could lead to significant penalties, structural changes to its business, and a precedent for regulating Big Tech. With competition watchdogs ramping up their efforts globally, the outcomes of these cases could reshape the digital advertising landscape for years to come.

FTC opens antitrust investigation into Microsoft’s cloud, AI, and cybersecurity practices

The US Federal Trade Commission (FTC) has launched an antitrust investigation into Microsoft, scrutinizing its cloud computing, software licensing, cybersecurity, and AI businesses.

The inquiry follows over a year of informal interviews with competitors and business partners, Bloomberg reported. FTC antitrust lawyers have sent Microsoft a detailed information demand, spanning hundreds of pages, after receiving approval from FTC Chair Lina Khan, the report said quoting sources familiar with the matter.

In the second week of November, Computer World reported that the FTC was preparing to investigate the business practices of Microsoft. The allegations were on whether Microsoft is abusing its market dominance by deploying restrictive licensing terms, which is not a fair practice.

Focus on market dominance and security practices

The investigation centers on Microsoft’s bundling of office productivity and security software with its cloud services, a practice critics argue disadvantages competitors in the authentication and cybersecurity markets. The FTC is particularly examining Microsoft Entra ID, its user authentication service, amid complaints that licensing terms and integration with its cloud offerings impede rival companies.

Microsoft’s role as a major government contractor and recent cybersecurity incidents involving its products have added urgency to the probe. The company provides billions of dollars in services to US agencies, including the Department of Defense, making its practices critical to national security.

In November 2023, FTC flagged concerns about the concentrated nature of the cloud market, warning that outages or performance issues could ripple through the economy. The authority had then collected feedback from civil society, industry stakeholders, and academia to prepare its report. As per the feedback, the majority of the concerns were related to competition and licensing practices.

In the UK too, Microsoft is facing a similar antitrust investigation by the Competition and Markets Authority. The investigation follows AWS’s complaint to the CMA against Microsoft for unfair trade practices.

Leadership transition and regulatory uncertainty

The investigation is among the final actions of Lina Khan, who has led one of the FTC’s most aggressive campaigns against corporate consolidation in decades. Khan is expected to step down as President-elect Donald Trump prepares to take office though there is no official confirmation yet.

Trump’s regulatory stance remains unclear, but his administration could mark a shift from President Joe Biden’s focus on reining in Big Tech. Under Biden, the FTC pursued cases against Amazon and Meta, while the Department of Justice sued Google and Apple.

This renewed scrutiny comes more than 25 years after the government’s landmark antitrust case against Microsoft over bundling its Windows operating system and browser, which ended without a breakup.

The FTC’s investigation could have far-reaching implications for the tech giant’s market practices and the broader cloud and cybersecurity sectors.

Queries to FTC and Microsoft remain unanswered.

10 steps to smarter Google account security

There are important accounts to secure, and then there are important accounts to secure. Your Google account falls into that second category, maybe even with a couple of asterisks and some neon orange highlighting added in for good measure.

I mean, really: When you stop and think about how much stuff is associated with that single sign-in — your email, your documents, your photos, your files, your search history, maybe even your contacts, text messages, and location history, if you use Android — saying it’s a “sensitive account” seems like an understatement. Whether you’re using Google for business, personal purposes, or some combination of the two, you want to do everything you possibly can to keep all of that information locked down and completely under your control.

And guess what? Having a password that you hastily set seven years ago isn’t enough. With something as priceless as your personal data, that single key is only the start of a smart security setup. And even it might be due for an upgrade.

Take 10 minutes to go through these steps, then rest easy knowing your Google account is as guarded as can be.

Part I: Reinforce your front door

Step 1: Check up on your Google account password

We’ll start with something simple but supremely important — that aforementioned Google account password. Consider the following questions:

  • Is your Google password based on your name, the name of your partner or child, your birthday, your street address, or anything else someone could easily figure out by Googling you?
  • Does your Google password revolve around a common word or easily guessable pattern?
  • Is your Google password short — less than eight characters, at a minimum?
  • Do you use your Google password (or any variation of it) to sign into any other app, website, or service?

If the answer to any of those questions is yes, first, bop yourself firmly on the nose. Then use this link to go change your password immediately — preferably to something long, complex, and not involving any easily discoverable personal info, any common words or patterns, or anything you use anywhere else.

(And note: This is also where a reliable password manager — whether the basic Google Password Manager or a more fully featured third-party option — can make all the difference in the world.)

Got it? Good. Next:

Step 2: Give your Google account a second layer of protection

No matter how strong your Google account password is, there’s always still the chance someone could crack it — but you can exponentially reduce the risk of anyone actually getting into your virtual property by enabling two-factor authentication on your account.

With two-factor authentication, you’ll be prompted for a second form of security in addition to your password — ideally something that requires a physical object that’d only ever be in your presence. In its simplest effective form, that could be a prompt or a code generated by your phone. If you want to get really fancy, it could be a button pressed on an actual key you carry (which could be a special USB- or Bluetooth-based dongle or even something built into your phone) — sometimes even called a “passkey,” which is basically just a confusing and overcomplicated way to say the same thing. There’s also an option to have codes sent to you via text message, but that method is relatively easy to hijack and thus not generally advisable to use.

Whatever path you choose, having that second layer in place will make it incredibly difficult for anyone to get into your Google account, even if they do somehow know your password.

setting up two factor authentication for google account

Two-factor authentication makes it significantly more difficult for anyone to get into your Google account.

JR Raphael / IDG

If you don’t have it set up yet, go to Google’s 2-Step Verification page to get started.

Step 3: Make sure you’re prepared to prove your identity

If Google ever detects some sort of suspicious activity on your account, it might require you to verify your identity before it lets you sign in. And if you haven’t looked at your account verification settings in a while (or ever, for that matter), there’s a decent chance the necessary info might be out of date or missing altogether.

Take a minute now to open up Google’s account security site and look in the section labeled “How you sign in to Google.” There, among other things, you should see two options:

  • Recovery phone
  • Recovery email

If the value next to either option is not current and correct, click it and update it immediately.

And with that, we’re ready to move on to our next level of Google account protection.

Part II: Clamp down on connections

Step 4: Review the third-party services with access to your account

When you set up an app that interacts with Google in some way — on your phone, on your computer, or even within a Google service such as Gmail or Docs — that app gets granted a certain level of access to your Google account data.

Depending on the situation, that could mean it’s able to see some of your activity within specific Google services; it could mean it’s able to see everything in your Gmail, Google Calendar, or Google Drive; or it could mean it’s able to see everything across your entire Google account.

It’s all too easy to click through confirmation boxes without giving it careful thought — so look back now and see exactly what apps have access to what types of information. Visit Google’s third-party app access overview and look through the list of connected services. If you see anything there you no longer use or don’t recognize, click its line and then click the button to remove it.

zapier app permissions page for google account

Review your third-party app list and remove any items that no longer need access to your Google account.

JR Raphael / IDG

Allowing apps you know and trust to access your account is perfectly fine, but you want to be sure to revisit the list regularly and keep it as current and concise as possible.

Step 5: Review the devices with access to your account

In addition to apps, you’ve almost certainly signed into your Google account on a variety of physical devices over the past several months (and beyond). And often, once you’ve signed in at the system level, a device remains connected to your account and able to access it — no matter how long it’s been since you’ve actually used the thing.

You can close that loop and take back control by going to Google’s device activity page. If you see any device there that you no longer use or don’t recognize, click the three-dot menu icon within its box and sign it out of your account right then and there.

Step 6: Look over app permissions on your phone

Another important app-related consideration: If you’re using Android, some system-level permissions — such as those connected to your contacts and calendar — can effectively control access to areas of your Google account data, since services such as Google Contacts and Google Calendar sync that data between your phone and the cloud.

Head into the Security & Privacy section of your phone’s system settings and look for the line labeled “Permission manager.” (Depending on your device, you might have to tap a line labeled “Privacy controls” before you see it.) If you can’t find it, try searching your system settings for the phrase permission manager instead.

Once you get there, you can look through each type of permission and see which apps are authorized to access it — and, with a couple more taps, revoke the permission from any apps where that level of access doesn’t seem necessary.

location permission page for todoist app on android

Android makes it easy to review and adjust an app’s permission, if you know where to look.

JR Raphael / IDG

Step 7: Look over extension permissions in your browser

On the desktop, extensions added into Chrome or any other browser have the potential to expand your browser’s capabilities — but they also have the potential to put your privacy at risk.

Extensions could require access to anything from your complete browsing history to your system clipboard. They can often read and change data on sites you’re actively viewing, too — either any and all sites or only specific pertinent URLs, depending on the specific permissions requested.

None of this is necessarily bad, so long as the extension in question is reputable and requesting only the permissions it genuinely requires for the function it provides. But sometimes, even the most well-intending developers can get lazy and go with a broader permission than what their software actually needs. And in such an instance, an extension that does something as simple as enhancing the Gmail interface or allowing you to save articles for later could have access to everything you do in your browser — and the sort of broad data that’s typically kept under lock and key inside your Google account could be shared with external entities for no good reason.

So let’s do a quick little assessment, shall we? If you’re using Chrome, type chrome:extensions into your browser’s address bar. If you’re using another browser, look in its main menu to find the equivalent option for managing extensions or add-ons, as they’re sometimes also called.

Once you’re looking a list of all your installed extensions, click the “Details” or “Options” button for every extension on the page. Peek at the “Permissions” section within each one and then take a close look at the “Site access” section, in particular. Think carefully about the level of access that’s granted there and whether it’s genuinely needed — or whether it’d make sense to bring it down a notch and make it more limited in nature.

With Chrome and other Chrome-based browsers — like Microsoft Edge and Vivaldi — if the extension seems like it really only needs access to a specific site or domain and it’s requesting access to your activity on all sites, click the dropdown menu in that area and change its setting from “On all sites” to “On specific sites” (which lets you provide a specific, limited list of URLs on which the extension will have full visibility).

permissions page for 1password app in chrome browser

Chrome and other Chrome-based browsers make it easy to view and adjust the permissions for any browser extension you’re using.

JR Raphael / IDG

Just remember that many extensions do legitimately need certain levels of access in order to operate — so make these changes cautiously and only after carefully thinking through the potential implications. Worst-case scenario, though, if you bring an extension’s access down and then find it’s no longer working as expected, you can always come back to this same area of your browser’s settings later and change it back.

Firefox, incidentally, doesn’t allow this level of granular permission-granting — so if you find an extension there is accessing more than you’re comfortable with, your only real option is to uninstall it entirely.

Speaking of which…

Step 8: Get rid of any mobile apps and browser extensions you don’t need

While you’re thinking about third-party add-ons for your computer and phone, take a moment to review everything you have installed on both fronts and consider how many of those programs you actually still use. The fewer cracked windows you allow on your Google account, the better — and if you aren’t even using something, there’s no reason to keep it connected.

And with that, we’re ready for our final two parts of account-protecting possibilities.

Part III: Plan for the worst

Step 9: Set up or confirm your virtual Google will

Thinking about worst-case scenarios is never particularly pleasant — I’d much rather be eating crumpets, myself — but just as it’s important to have a plan in place for your physical and financial possessions, creating a virtual will for your Google account will make matters infinitely easier for your loved ones if and when you ever develop a mild case of death.

For company-managed Google Workspace accounts, someone at your organization would be able to take control of your account in the event that you were no longer able to access it. But with an individual Google account, no such system for passing along access exists.

Google has a simple system in place to manage this: Open up the Inactive Account Manager, and you’ll find tools for determining exactly what should happen if your account ever becomes inactive for a certain period of time. You can specify the number of months that must go by without any sign of your presence, along with the email addresses and phone numbers Google should use to contact you for confirmation. And then, you can give Google the email addresses of any people you want to be notified once it’s clear that you’re no longer available.

From there, you can specify exactly what types of information your chosen contacts will be able to access. You’ll even be able to leave a message for those people, if you want, and optionally create a broad autoreply that’ll be sent to anyone who emails you once your inactive period has begun (creepy!).

inactive google account management page

Google’s Inactive Account Manager is like a virtual estate planning tool for all of your account-associated data.

JR Raphael / IDG

Even if you’ve gone through this process before, it’s worth going back in and revisiting your preferences occasionally to confirm the info is all still complete and accurate — not only in the specific contacts you have set to be notified but also in what specific areas of your account those people will be able to access, if this situation ever actually arises.

For that latter piece of the puzzle, be sure to click the pencil-shaped icon next to the email address of each person you have listed. After you confirm their address, that’ll show you a list of account-related areas — everything from Contacts and Calendar to Google Chat, Google Photos, and even your location history (if you’re using a device that contributes to such a collection).

Virtually every time I’ve ever looked at that, I’ve found a handful of newer account-related areas weren’t selected to be shared — presumably because they didn’t exist when I had last reviewed the options. I had to manually check them all to be sure they’d be included in any post-consciousness account sharing.

Part IV: Turn your protection up to the max

Step 10: Think about Google’s Advanced Protection Program

Last but not least is a step that won’t be right for everyone but could be hugely consequential for certain types of Google users. For anyone at a higher risk of a targeted attack, Google offers an elevated form of account security called the Advanced Protection Program.

The program is described as being appropriate for business leaders, IT admins, activists, journalists, and anyone else who’s in the public eye and likely to be sought out by someone looking to do damage. It puts a series of heavy-duty restrictions on your Google account to make it especially difficult for anyone else to gain access — but as a result, it also makes things a bit more difficult for you.

The core part of the Advanced Protection Program is a requirement to have a physical security key the first time you sign into your account on any new device. That means in addition to your password, you’ll need that specific form of two-factor authentication — either an approved key built into your phone or a standalone dongle — in order to access your email, documents, or any other area of your Google account.

As part of the added security, you also won’t be able to connect most third-party apps to your Google account — including those that require access to your Gmail or Google Drive in order to operate. That could create some challenges (such as signing into an Android TV device, curiously enough) and require some compromises (such as no longer being able to use most third-party email clients with Gmail). And if you ever can’t get into your account for any reason, you’ll have to go through an extra-involved, multiday recovery process in order to restore access. You can read more about what the Advanced Protection Program is like to live with in this thoughtful overview.

Ultimately, only you can decide if the added inconveniences are worth the extra assurance. If you want the utmost in security for your Google account, though — and particularly if you’re someone who’s at a higher-than-average risk of being targeted — it’s something well worth considering.

If you do want to make the leap and add this extra layer of intense security onto your Google account, head over to Google’s Advanced Protection Program website to get started. With a personal account, you’ll be able to get yourself up and running in a matter of minutes. With an account that’s part of a paid company Workspace plan, your plan administrator will have to enable Advanced Protection for the organization before you’re able to do it. Once you start the enrollment process, you’ll see pretty quickly if it’s already available for your account or not — and if not, you can contact your company admin to ask about the possibility of allowing it.

And with that, give yourself a pat on the back: Now that these 10 steps are behind you, your Google account security is officially in tiptop shape — and you shouldn’t have to devote an ounce of thought to this area again anytime soon.

Just set yourself a reminder to revisit this page and review the steps within it once a year for good measure. (I’ll continue to update and expand the specific instructions as needed over time.) Do the same with security smarts in other areas — like your Android security settings, if you’re using an Android device of any sort — and then rest easy knowing your most important digital info is as secure as it can possibly be.

This article was originally published in February 2020 and updated in November 2024.

Intel’s $7.9B subsidy deal comes at a high price for the chipmaker

Intel’s $7.86 billion subsidy agreement with the US government imposes strict conditions on the company’s ability to divest stakes in its chipmaking division if the unit becomes independent.

In a recent securities filing, Intel disclosed that it must maintain at least 50.1% ownership of Intel Foundry if the division is spun off as a privately held entity.

If the unit goes public and Intel is no longer the largest stakeholder, the sale of stakes to any single investor would be limited to 35%.

This follows Intel CEO Pat Gelsinger’s September announcement to spin off the company’s chip production division into an independent subsidiary aimed at securing independent funding and optimizing capital structure.

Earlier this week, the US Commerce Department finalized a $7.86 billion subsidy for Intel, reduced from the $8.5 billion announced in March.

This comes as Intel faces heightened scrutiny over its financial challenges, compounded by intensifying competition from AMD and Nvidia in the AI chip market and recent workforce reductions.

Challenges ahead for Intel

The sale restrictions tied to the subsidy underscore the US intention to reinforce domestic semiconductor production under the CHIPS Act.

“The subsidy definitely comes with strings attached and is designed to ensure accountability for the recipient,” said Neil Shah, VP of research and partner at Counterpoint Research. “In this case, it’s Intel, and if a majority shareholder in the future decides not to comply or pivots to a strategy that doesn’t align with the goals of the US CHIPS Act, it could create significant issues.”

The challenge for Intel is securing consistent capital to sustain and grow its foundry business while keeping pace with rival TSMC’s heavy investments.

With its core businesses in PCs and servers underperforming – once key contributors to funding R&D and fabrication infrastructure – Intel’s ability to remain competitive has come under strain.

“The only way to raise capital is to spin off and secure new investors through an IPO or other means, which would dilute Intel’s stake,” Shah said. “To stay competitive, Intel needs to invest tens of billions of dollars annually. These restrictions could leave Intel stuck unless they manage to renegotiate terms with the US government.”

If Intel fails to remain competitive, customers may shift towards competitors like TSMC. This could lead to enterprises becoming more dependent on infrastructure and devices built with chips primarily produced by TSMC, further strengthening TSMC’s market position.

This shift could drive up chip prices, diminishing the purchasing power of enterprises and their equipment suppliers. It could also negatively impact US efforts to achieve leadership in semiconductor manufacturing.

“While such restrictions could enhance resilience against global supply chain disruptions and strengthen the US semiconductor ecosystem, it might come at the expense of slower scalability,” said Manish Rawat, semiconductor analyst at TechInsights.

Implications for enterprises

For enterprise customers, the restrictions bring both challenges and opportunities, according to Rawat. Intel’s limited access to external investors and potential delays in scaling its foundry operations could raise supply chain reliability concerns during peak demand.

“This could create uncertainties for customers relying on Intel for advanced manufacturing to meet their future technology needs,” Rawat said. “Additionally, concerns may arise over the foundry’s long-term strategic direction. If Intel Foundry’s ownership structure lacks the flexibility to adapt to market conditions, enterprise customers could experience disruptions in semiconductor supply reliability, particularly if Intel struggles to keep up with demand.”

On the other hand, a US-centric Intel Foundry could boost confidence among enterprises prioritizing supply chain security and adherence to “buy American” policies amid escalating geopolitical tensions. “This shift could also strengthen the domestic semiconductor supply chain, providing significant benefits, especially for industries involved in critical defense and national security-related applications,” Rawat added.

Judge won’t alter Google antitrust trial dates to accommodate Trump DOJ’s proposal

A US federal judge indicated that the trial addressing the Department of Justice’s proposals to curb Google’s dominance in online search will proceed as scheduled in April 2025, even if DOJ officials under President-elect Donald Trump seek to revise the remedies.

The move signals the urgency in resolving the case, which could lead to a historic shake-up of the tech giant’s operations, Reuters reported.

US District Judge Amit Mehta, overseeing the case in Washington, confirmed Tuesday that the trial will proceed as scheduled despite potential changes in DOJ leadership and priorities under President-elect Donald Trump’s administration.

“If there is going to be a re-evaluation of the remedies that are being requested, it needs to be done quickly,” the report said quoting Judge Mehta from a hearing.

The DOJ has proposed sweeping remedies to curb Google’s influence, including a forced divestiture of its Chrome browser and potentially its Android operating system. Both products serve as critical distribution channels for Google Search, a service found to operate as an illegal monopoly in Mehta’s August ruling.

For context, Trump is likely to pursue ongoing lawsuits against Big Tech, several of which originated during his first term. However, his recent remarks expressing skepticism about a potential Google breakup underscore the significant influence he will wield in shaping the direction of these cases.

“If you do that (splitting Google), are you going to destroy the company? What you can do without breaking it up is make sure it’s more fair,” Trump said at an event in Chicago in October.

The Justice Department first filed the antitrust lawsuit against Google in 2020, during former President Donald Trump’s first term. It accused Google of leveraging its dominance in search and advertising markets to stifle competition.

In August 2024, Mehta ruled that Google violated US antitrust laws, setting the stage for the ongoing debate over remedies. The DOJ under President Joe Biden proposed additional measures, including requiring Google to share search data with competitors, limiting investments in rival technologies, and restricting acquisitions of companies in search or query-based AI.

Google’s pushback and trial stakes

Google has sharply criticized the DOJ’s proposals, calling them “staggering” and warning that they could harm American technological leadership. The company argued that measures like forced divestitures and data-sharing mandates could weaken its competitive edge and disrupt the broader digital ecosystem.

“We’ve invested billions of dollars in Chrome and Android. Breaking them would change their business models, raise the cost of devices, and undermine competition with Apple,” Google said in a blog post in October.

The upcoming trial is expected to highlight the role of artificial intelligence in reshaping the online search landscape. Prosecutors plan to call witnesses from major AI players, including OpenAI, Perplexity, Microsoft, and Meta Platforms, to underscore the competitive challenges Google’s practices pose to innovation.

Political dynamics and antitrust implications

President-elect Trump, who expressed skepticism about a Google breakup, has yet to outline his administration’s stance on the DOJ’s proposals. However, Judge Mehta’s decision to maintain the trial timeline suggests limited patience for political recalibrations.

The case represents the most aggressive antitrust action against a tech company since the DOJ’s unsuccessful attempt to break up Microsoft two decades ago. If successful, the remedies could significantly alter the competitive dynamics in online search and advertising markets while setting a precedent for regulating the tech industry.

The trial remains a critical test of the federal government’s ability to rein in Silicon Valley’s most powerful players in an era where technology increasingly shapes global markets.

Nvidia shows off a new genAI model that can create sound and music

Nvidia on Monday showed off a new generative AI (genAI) model that can be used to create all kinds of sounds and music: Fugatto (which stands for Foundational Generative Audio Transformer Opus 1).

By entering a text prompt, a user can make Fugatto create basically any sound, such as a trumpet barking like a dog. The genAI ​​model can also be used to change the dialect of a singer or turn a piano piece into a song, according to Reuters.

Fugatto has been trained on open source data, and there is currently no official release date. However, the idea is that the ​​model will eventually be used in the production of music, films and games.

The video below from Nvidia highlights some of Fugatto can do.

Will Brazil force Apple to admit App Store defeat?

Brazil’s antitrust body has joined a chorus of regulators to demand that Apple permit external payment methods in iOS apps. It’s just the latest page in an ongoing story, but might be enough to break this camel’s backbone. 

What this means, at the risk of stating the obvious, is that Apple now faces so much pressure to open up to external payment systems, it could finally make sense for it to bite the bullet and open up across all its territories rather than continue to fight. 

Apple has already been forced to open up in this way — and also to third-party app stores — in the EU, and to let US developers sell in-app content outside the App Store. It now faces similar pressure in the UK. But while it resists each of these moves, there is a cost to the company in legal fees and reputational damage attached to each battle in this conflict — at some point, it might make better business sense to cede the field.

A potential opportunity

While I don’t expect Apple is at all thrilled at how these cookies are crumbling, perhaps there is a way to turn all of this adversity into opportunity. If there’s ever been a time to add features and improvements to the payment systems Apple already provides, this is it.

It might also be time for Apple to take its payments infrastructure to other platforms and markets. Why shouldn’t you be able to pay for Android apps using Apple’s payment systems? Why not offer Apple payments to gamers from within Fortnite? Why not turn payments into products and grab an Apple-sized slice of the wider payments pie?

Customers from inside other ecosystems might be ready to embrace Apple’s rock-solid, highly secure, privacy-first payment system. What I’m saying is that Apple has a unique chance to compete, one from which it can continue to evangelize the advantages of the services (and platforms) it already provides for in-app purchases and everything else.  At the end of the day, the best way to keep people using its payments systems is to convince them that they want to use that system — even if they have a choice of others to use. 

With choice being imposed on the company, the company has an excuse to compete right back at competitors.

Who will lose?

Apple will not be blind to this, but support for external payment systems on its platforms remains very new and is only visible in a small number of markets. Given the potential risks of fraud and worse, it makes sense for Apple (and everyone else) to take a wait-and-see approach to extending this openness to new markets. It is just good practice to monitor what scams, frauds, and other attacks will emerge as third-party services are used on iOS in the EU. It’s not inconceivable that part of Apple’s reluctance to open up more widely yet (other than the money) is a desire to assess the perils and pitfalls of doing so — a trial in which Apple’s European customers are the crash test dummies.

But regulators don’t seem terribly keen to wait and see. Regulators in India, Brazil, UK, US, Japan, South Korea, and elsewhere now seem to agree that Apple must lift restrictions on payment methods for in-app purchases. It’s going to happen in the end.

What price platform integrity?

Even then, another problem Apple faces in that is that each nation could demand slightly different approaches to lifting those restrictions. The problem is that there is a development and infrastructure support cost, not to mention legal expenses, to each of those dictated approaches. What that means is that the less harmonious Apple lets payments on iOS become, the higher the cost of business. 

To avoid weakening the platform with a thousand cuts, it just makes more sense to lift the restrictions internationally, while also putting in place firm safeguards that permit Apple to swiftly remove any payment services identified as fraudulent or lax in security from its platforms. 

Now, I’m on the record arguing that I think there is a very high probability that once payment systems in apps are opened up this way we will see fraud, identity theft, and other forms of financial crime affect against Apple’s so-far highly secure platform. I think that’s inevitable.

Consumers will be damaged, and in the case of those using non-Apple payment services or app stores they cannot expect to get support from Apple. They may have accessed a non-Apple service on an Apple device, but the exchange will be between them and the service, not them and Apple. There will be confusion and broken hearts. This is what will happen.

Managed decline

But Apple can manage the experience and focus on showing the many ways it offers a better and safer system to use. It also means bowing to the inevitable and building something that satisfies regulators enough that they don’t choose to force Apple to build a system that dilutes its own platform. 

So, why has Apple resisted so much? Perhaps because it knows there are other criticisms reaching the anti-trust runway. Perhaps it feels that it makes sense to put up a fight on this particular hill in order to give it time to shore up better defenses on the other hills it currently holds.

All the same, the judgment coming out of Brazil suggests the company is running out of time to prepare for other battles, and now might be time to concede on this particular point. Despite which, if I were in Apple (or a regulator’s) shoes, I’d still try to delay any such move until the first casualties from the European experiment are identified and lessons learned. 

You can follow me on social media! Join me on BlueSky,  LinkedInMastodon, and MeWe