There’s a severe vulnerability in the way that all versions of Android handle the restoration of backups that can allow an attacker to inject a malicious APK file into the backup archive.
Browsing Category: Mobile Security
The Gunpoder Android malware has co-opted a Nintendo NES game emulator and hides inside the Airpush ad library, researchers at Palo Alto Networks said.
Google has pulled a malicious click fraud app from Google Play that spoofs the popular BatteryBot Pro app.
Many smartphones manufactured by LG contain a vulnerability that can allow an attacker to replace an APK file with a malicious file of his choice. The problem is the result of several conditions on LG phones. Like other manufacturers, LG includes custom apps on its handsets, which are not available through the normal Google Play[…]
Amazon patched three vulnerabilities in its Fire Phone, two of which allow for silent certificate installations.
Google’s decision to limit its Android Security Rewards program to Nexus devices could have security consequences for non-Nexus device users.
Attackers sitting on a network can intercept Swift keyboard updates from Samsung, inject code, and potentially take remote control of millions of Android mobile devices.
Google today launched the Android Security Rewards program, a bug bounty for Android Nexus 6 and Nexus 9 devices.
In the forthcoming iOS 9.0 release, Apple is adding two-factor authentication and a number of other security features.
Apple is encouraging developers who create apps for iOS to begin moving their apps to an HTTPS-only model as soon as possible in an effort to thwart eavesdropping on insecure, plaintext HTTP connections. The move is yet one more sign that major Internet and technology companies are becoming ever more resistant to large-scale, passive surveillance[…]