OAuth 2.0 Hack Exposes 1 Billion Mobile Apps to Account Hijacking
Mobile app developers need to be aware of improper OAuth 2.0 implementations that have put one billion mobile apps at risk to takeover.
Mobile security
Keen Lab Takes Down iPhone 6S, Nexus 6P at Mobile Pwn2Own
Hackers with Keen Team identified vulnerabilities in iOS 10.1 and Android Nougat at Mobile Pwn2Own this week.
Mobile Applications Leak Device, Location Data
A study finds risky apps leave mobile devices open to SMS denial-of-service attack and remote SIM card rooting.
At Virus Bulletin, researchers explain how Android mobile applications can collude to share data and synchronize payload execution.
At Virus Bulletin, researchers explained the risks associated with abandoned SDK master servers that present attackers with an opportunity to assume control of these communication channels.
The massive Yahoo breach, this week’s Security of Things Forum, Mamba ransomware, and Google Allo are discussed.
Researchers at Lookout said that 80 percent of Android devices remain vulnerable to a critical Linux vulnerability disclosed last week.
Google today in the monthly Android Security Bulletin patched more than three-dozen critical vulnerabilities in Qualcomm components.
Developers with Android’s Security Team peeled back some of the layers on the mobile operating system this week; describing the lengths Google goes to protect the Linux kernel.
The Seeking Alpha mobile app operates without a measure of encryption, putting user information, including credentials and strategic financial interests at risk.
Editor's Picks
-
Google Expands Bug-Bounty Program to Battle Abuse Methods
-
Open MQTT Servers Raise Physical Threats in Smart Homes
-
Google Chrome Bug Opens Access to Private Facebook Information
-
Microsoft Cortana Flaw Allows Web Browsing on Locked PCs
-
BlackIoT Botnet: Can Water Heaters, Washers Bring Down the Power Grid?