Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Google has made the Android kernel more resilient to code reuse attacks, courtesy of implemented support for LLVM’s Control Flow Integrity (CFI). [Read More]
Google has announced improved user control over data shared with apps, redesigned app permissions, and diminished app access to sensitive information such as contacts, SMS, and phone. [Read More]
Apple has released patches for iOS devices to address a recently disclosed vulnerability that could result in the bypass of the lockscreen. [Read More]
A new lockscreen bypass method allows access to photos and contacts on the latest iPhone XS running iOS 12 [Read More]
Phone numbers given to Facebook for two-factor authentication were also used to target advertising. [Read More]
Duo Labs has discovered an 'authentication weakness' in Apple's Device Enrollment Program (DEP), that could potentially have serious consequences. [Read More]
A total of 16 vulnerabilities were addressed with the release of iOS 12, most of which impact only iPhone 5s and later, iPad Air and later, and iPod touch 6th generation. [Read More]
Google’s Android team finds high severity privilege escalation vulnerability in Honeywell’s Android-based handheld computers [Read More]
Mobile, as a financial fraud threat vector, is growing dramatically. Fifty-eight percent of digital transactions now originate from mobile devices, and one-third of attacks are via mobile. [Read More]
One year after the BlueBorne flaws were disclosed, more than 2 billion devices are still vulnerable to attacks, either because users have failed to install patches or because no fixes are available [Read More]

FEATURES, INSIGHTS // Mobile Security

rss icon

Laurence Pitt's picture
By paying just a bit more attention to the permissions you are allowing on your phone or computer, you could protect yourself from a much more significant headache down the road.
Alastair Paterson's picture
While less powerful than desktops and servers used for this purpose, more Android devices exist, and they are often less protected and, thus, more easily accessible.
Scott Simkin's picture
Users, networks and applications can – and should— exist everywhere, which puts new burdens on security teams to protect them in the same way as the traditional perimeter.
Alastair Paterson's picture
By understanding what’s up with your mobile apps, you can mitigate the digital risk to your organization, employees and customers.
Adam Ely's picture
In this day of BYOD devices and zero-trust operating environments, IT and security professionals gain nothing from trying to manage the unmanageable—which is just as well, because the device is no longer the endpoint that matters.
Simon Crosby's picture
While flexibility offers countless benefits for corporations and their employees, this new emphasis on mobility has also introduced a new set of risks, and this in turn re-ignites a focus on endpoint security.
Adam Ely's picture
Applying a zero trust model to mobile and the right security controls at the app level could align productivity and security. But the bottom line is that it’s no longer about the device; it’s about the applications.
David Holmes's picture
DDoS continues to wax and wane in unpredictable cycles, but the ecosystem has evolved to keep it out of the mobile space.
Adam Ely's picture
The mobile strategist will play a pivotal role in mobile integration, as they pave the way for the organizations to do so purposefully and securely.
David Holmes's picture
After the rounds of predictions for 2014, I had bet my colleague that if no mobile DDoS appeared this year, we’d stop talking about it. And it looks like we can.