Mobile Applications Leak Device, Location Data
Categories: Mobile Security, Vulnerabilities
A study finds risky apps leave mobile devices open to SMS denial-of-service attack and remote SIM card rooting.
Browsing Tag: Mobile security
Mobile App Collusion Can Bypass Native Android Security
Categories: Mobile Security
At Virus Bulletin, researchers explain how Android mobile applications can collude to share data and synchronize payload execution.
Abandoned Mobile C&C Servers Present Opportunity to Attackers
Categories: Mobile Security
At Virus Bulletin, researchers explained the risks associated with abandoned SDK master servers that present attackers with an opportunity to assume control of these communication channels.
Threatpost News Wrap, September 23, 2016
The massive Yahoo breach, this week’s Security of Things Forum, Mamba ransomware, and Google Allo are discussed.
TCP Flaw in Linux Extends to 80 Percent of Android Devices
Categories: Hacks, Mobile Security, Vulnerabilities
Researchers at Lookout said that 80 percent of Android devices remain vulnerable to a critical Linux vulnerability disclosed last week.
Google Patches Dozens of Critical Qualcomm Components Flaws
Categories: Mobile Security, Vulnerabilities
Google today in the monthly Android Security Bulletin patched more than three-dozen critical vulnerabilities in Qualcomm components.
Google Details Linux Kernel Defenses, New and Old
Categories: Mobile Security, Vulnerabilities
Developers with Android’s Security Team peeled back some of the layers on the mobile operating system this week; describing the lengths Google goes to protect the Linux kernel.
Seeking Alpha Mobile Financial App Forgoes Encryption
Categories: Cryptography, Mobile Security, Vulnerabilities
The Seeking Alpha mobile app operates without a measure of encryption, putting user information, including credentials and strategic financial interests at risk.
Threatpost News Wrap, July 8, 2016
Categories: Cryptography, Malware, Mobile Security, Podcasts, Vulnerabilities
Mike Mimoso, Tom Spring and Chris Brook discuss the news of the week, including all things Android: the crypto weakness, the full disk encryption bypass, and new malware, Hummingbad, which impacts the mobile operating system. The three also discuss the TP-Link router fiasco.
Android KeyStore Encryption Scheme Broken, Researchers Say
Categories: Malware, Mobile Security, Vulnerabilities
The default implementation for KeyStore, the system in Android designed to store users credentials and cryptographic keys, is broken, researchers say.