Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Ride sharing giant Uber is downplaying the impact from a devastating security breach that included the theft of employee credentials, access to the HackerOne bug bounty dashboard and data from an internal invoicing tool. [Read More]
CISA and the NSA have published considerations on the benefits and security of implementing an Open Radio Access Network (RAN) architecture. [Read More]
Mobile phishing protection startup novoShield has emerged from stealth with an iPhone application. [Read More]
The latest major iOS release aims to keep users protected from state-sponsored mercenary spyware, abusive spouse snooping, and exploitation of critical vulnerabilities. [Read More]
Apple acknowledged the macOS zero-days in an advisory but did not share technical details or indicators of compromise to help defenders hunt for signs of infections. [Read More]
Google’s September 2022 security update for Pixel devices addresses two critical-severity escalation of privilege vulnerabilities. [Read More]
Cymulate, a late-stage Israeli startup in the breach and attack simulation space, has now raised a total of $141 million in venture capital financing. [Read More]
Symantec discovered hardcoded AWS credentials in 1,800 mobile apps and highlighted some instances that show the extent of the potential risks. [Read More]
Apple has shipped patches for older iPhone and iPad devices to address a recent, actively exploited zero-day vulnerability. [Read More]
Pwn2Own Toronto 2022 is offering more than $1 million in cash and prizes, including $100,000 for a new SOHO attack scenario. [Read More]

FEATURES, INSIGHTS // Mobile Security

rss icon

Adam Ely's picture
Security teams and lines of business have reached a turning point on BYOD. It’s now become more important than ever for the CISO to figure out how to manage risk without inhibiting users.
Adam Ely's picture
Many of us create our own blind spots through assumption. Until we understand what is occurring on mobile devices, we cannot determine if our controls are effective at managing risk.
Adam Ely's picture
CISOs are notoriously disliked. Trying to protect company, customer and employee data often means having to say “no” to new projects and implementations. This does not earn you many friends.
Ryan Naraine's picture
John Hultquist, Manager of Cyber Espionage Threat Intelligence at ISIGHT Partners, joins the podcast to talk about "NEWSCASTER," a cyber espionage operation that uses fictitious social media accounts to launch attacks.
Danelle Au's picture
Enterprises must find the right balance to deliver a mobile security environment that meets productivity and flexibility needs without putting devices, apps, or data at risk.
Ryan Naraine's picture
In this podcast, Richard Boscovich, assistant general counsel in the Microsoft Digital Crimes Unit, talks about the new Microsoft Cybercrime Center and the ongoing battle to stop the proliferation of botnets around the world.
Wade Williamson's picture
If you are going to analyze network traffic for hidden malware or look for anomalous behaviors that indicate an infection, you should be sure to include mobile devices and mobile malware in your efforts.
Ryan Naraine's picture
Vinnie Liu from Bishop Fox joins Ryan Naraine on the podcast to warn businesses about the security risks associated with the new LinkedIn Intro application.
Torsten George's picture
Many security experts believe the next wave of enterprise hacking will be carried out via the mobile channel. What steps can be taken to maintain the productivity gains and cost-savings associated with BYOD, while proactively managing and mitigating security risks associated with this practice?
Ryan Naraine's picture
Costin Raiu of Kaspersky Lab's global research and analysis team talks about the global implications of the Icefog APT campaign and discloses that a major command-and-control shutdown is currently underway.