With 2015 more or less in the rear view mirror Mike Mimoso and Chris Brook discuss the year in security: Wassenaar, ransomware, mobile threats like Stagefright, Carbanak and Equation Group, and more.
Browsing Category: Mobile Security
Google’s monthly over-the-air Nexus security updates for December included patches for a critical flaw in Mediaserver and a rooting vulnerability in the Android kernel.
Moxie Marlinspike’s Open Whisper Systems released Signal Desktop, a desktop version of Signal end-to-end encrypted messaging application.
Cisco patched its WebEx mobile app for Android, and published advisories warning of vulnerabilities in three other products.
A vulnerability reported to United Airlines that could have been exploited to manipulate flight reservations and customer data sat unpatched for almost six months before it was fixed.
Versions of a popular Chinese mobile ad library have been backdoored with capabilities that can be used to surreptitiously record audio and steal data stored on thousands of iOS devices.
Researchers at mobile security firm Lookout have found a new strain of adware, Shuanet, spreading via Trojanized Android apps that roots mobile devices.
Google’s Project Zero tested the security of one of its biggest OEM partners, Samsung, finding 11 critical vulnerabilities in the Galaxy S6 Edge.
A new version of XcodeGhost has added new obfuscation techniques, and support for iOS9. Infections have also reached out beyond China.
Google released its monthly over-the-air Android security update to Nexus devices, patching another handful of vulnerabilities related to Stagefright.