Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Texas has entered into an Assurance of Voluntary Compliance agreement with PayPal over alleged privacy and security violations by Venmo, a company acquired by PayPal in 2013. [Read More]
Google announced a new version of its Safe Browsing API and a focus on maximizing protection for both mobile and desktop users. [Read More]
A Critical Elevation of Privilege (EoP) vulnerability in the Qualcomm Secure Execution Environment (QSEE) affects around 60 percent of all Android devices around the world, despite being already fixed, researchers warn. [Read More]
A design flaw in Android allows attackers to trick users into enabling accessibility features via clickjacking [Read More]
Apple has removed from the App Store “System and Security Info,” a newly published utility designed to provide users with information on the security of their devices. [Read More]
The new “System and Security Info” App provides users with detailed information on what applications and processes are running on their iOS devices. [Read More]
The FCC and the FTC have sent out letters to mobile carriers and device manufacturers asking them about their security update practices [Read More]
A new Android banking Trojan capable of spying on users and stealing credit card info is achieving persistency on infected devices by prompting for device administrator rights until the user gives in. [Read More]
A serious vulnerability in a Qualcomm software package allows hackers to access sensitive data stored on Android devices [Read More]
Google patches 40 Android vulnerabilities, including issues rated critical and high severity, with May 2016 update [Read More]

FEATURES, INSIGHTS // Mobile Security

rss icon

Wade Williamson's picture
If you are going to analyze network traffic for hidden malware or look for anomalous behaviors that indicate an infection, you should be sure to include mobile devices and mobile malware in your efforts.
Ryan Naraine's picture
Vinnie Liu from Bishop Fox joins Ryan Naraine on the podcast to warn businesses about the security risks associated with the new LinkedIn Intro application.
Torsten George's picture
Many security experts believe the next wave of enterprise hacking will be carried out via the mobile channel. What steps can be taken to maintain the productivity gains and cost-savings associated with BYOD, while proactively managing and mitigating security risks associated with this practice?
Ryan Naraine's picture
Costin Raiu of Kaspersky Lab's global research and analysis team talks about the global implications of the Icefog APT campaign and discloses that a major command-and-control shutdown is currently underway.
Michael Callahan's picture
The problem with this Internet of Things is that the manufacturers of "smart" devices are not always as concerned about security as we end-users might want them to be.
Ryan Naraine's picture
Jerry Bryant, Senior Security Strategist in the Microsoft Trustworthy Computing group chats about the company's thinking behind the expansion of the Microsoft Active Protections Program (MAPP).
Wade Williamson's picture
As security professionals, it’s our job to see around the corner whenever possible. While the sky is not falling, if controlling mobile malware isn’t on your radar, it definitely should be.
Ryan Naraine's picture
Security researchers Charlie Miller and Chris Valasek join the podcast to talk about their work hacking the into modern vehicles to manipulate steering, acceleration, speedometers and safety sensors.
Gant Redmon's picture
Being in a public place makes you fair game. So what makes a place private instead of public? This is where that famed “reasonable person” comes in.
Avi Chesla's picture
While Long Term Evolution (LTE) networks bring the promise of relieving traffic jams for mobile operators, they also entail new security risks.