Join thousands of people who receive the latest breaking cybersecurity news every day.
Mike Mimoso talks to Duo Security co-founder and CTO Jon Oberheide at RSA Conference about Google’s BeyondCorp security model, enforcing perimeter security, how endpoint security has evolved through the years, and the future of passwords.
Google has decided that it will no longer provide Webview patches for Android systems running Jelly Bean 4.3, or older, putting the onus on OEMs and the open source security community to provide patches to users.
Google, which has been a favorite target of privacy advocates for the last few years, has taken another step that’s unlikely to endear the company to that crowd or Android users. The company has begun removing ad-blocking apps from the Google Play Android app market, apparently for violating the terms of service.
Security researcher Jon Oberheide wrote a fake extension to the popular Angry Birds mobile game and put it in the Android Market as a demonstration of how an attacker could exploit a vulnerability he’d found in Android. The phony app didn’t do anything malicious, but it had permissions on Android handsets that enabled it to send toll SMS messages, steal contacts and take other actions, without the user’s knowledge.
InfoSec Insider content is written by a trusted community of Threatpost cybersecurity subject matter experts. Each contribution has a goal of bringing a unique voice to important cybersecurity topics. Content strives to be of the highest quality, objective and non-commercial.
Sponsored Content is paid for by an advertiser. Sponsored content is written and edited by members of our sponsor community. This content creates an opportunity for a sponsor to provide insight and commentary from their point-of-view directly to the Threatpost audience. The Threatpost editorial team does not participate in the writing or editing of Sponsored Content.