New iOS malware called YiSpecter abuses Apple-issued enterprise developer certificates and private APIs to push adware onto devices in China and Taiwan.
Browsing Tag: Mobile security
Researchers at Zimperium have reported two new Stagefright vulnerabilities affecting one billion Android devices.
Researchers found a weakness in XcodeGhost that puts it at risk for man-in-the-middle attacks.
iOS apps infected with the XcodeGhost malware have been removed from the App Store and three command domains communicating with infected apps have been shut down.
There is a major vulnerability in a library in iOS that allows an attacker to overwrite arbitrary files on a target device and, when used in conjunction with other techniques, install a signed app that the device will trust without prompting the user with a warning dialog. The vulnerability lies in a library in both[…]
A new strain of Android ransomware disguised as a video player app uses an instant messaging protocol called XMPP to receive commands and communicate with the command and control server.
Indiana University researchers developed a scanner called MassVet that finds malicious apps hiding in Android markets such as Google Play.
A patched iOS vulnerability can be exploited to allow malicious apps to bypass background restrictions and exploit Apple devices.
A mobile application exploiting the so-called Certifi-gate vulnerability disclosed at Black Hat has been removed from the Google Play store.