Mobile Security

Scanner identifies thousands of malicious Android apps on Google Play, other markets

Scanner identifies thousands of malicious Android apps on Google Play, other markets

By

A team of researchers created an app vetting scanner referred to as "MassVet," and used it to identify 127,429 malicious apps on 33 Android markets.

FireEye intern pleads guilty in Darkode case

FireEye intern pleads guilty in Darkode case

By

Malware author Morgan Culbertson pleaded guilty on Tuesday in a Pittsburgh federal court.

App on Google Play store exploited critical 'Certifi-gate' Android vulnerability

App on Google Play store exploited critical 'Certifi-gate' Android vulnerability

By

The Recordable Activator app was available in the Google Play store and was observed exploiting the Certifi-gate vulnerability.

Symantec now protecting one billion IoT devices

Symantec now protecting one billion IoT devices

By

Symantec reported today that its security software is now protecting more than 1 billion Internet of Things (IoT) devices and as this number expands so will security risks associated with these products.

Sandbox violation in Apple's iOS affects MDM users, could enable breaches

Sandbox violation in Apple's iOS affects MDM users, could enable breaches

By

The vulnerability, which is being referred to by Appthority as Quicksand, was patched by Apple in iOS 8.4.1.

Widespread Android vulnerability enables code execution with full privileges

Widespread Android vulnerability enables code execution with full privileges

By

Google has addressed the bug, CVE-2015-3842, which can be exploited via a malicious app that does not require any permissions.

Cloud-managed IT security — Simple. complete. powerful.

IT security is more challenging than ever. IT departments are tasked with managing a roaming workforce with limited resources and budget. Security solutions need to be effective yet approachable, especially for mid-sized companies.

E-ZPass users targeted in phishing scam

E-ZPass users targeted in phishing scam

By

Drivers in the Washington, D.C. metro area are being targeted by a phishing scam that purports to come from E-ZPass.

Vulnerability identified in Google Admin app, remains unpatched

Vulnerability identified in Google Admin app, remains unpatched

By

The vulnerability was identified by security researchers with MWR Labs, and it impacts Google Admin version 2014101605 and lower.

Apple's iOS 8.4.1 update addresses dozens of security issues

Apple's iOS 8.4.1 update addresses dozens of security issues

By

Apple's update to iOS and iTunes included dozens of security patches along with fixes for the iCloud Music Library and Apple Music.

Android ransomware locks up devices, has additional features

By

The malware was detected by Fortinet as Android/Locker.CB!tr and is capable of receiving a variety of commands.

Corvette text vulnerability fix on the way

Corvette text vulnerability fix on the way

By

Mobile Devices said will soon distribute an update that will fix the security flaw in its On-Board Diagnostics II (OBD-II) dongle which was shown to allow a Corvette to be controlled through a text message.

Researchers use text to hack Corvette

By

Researchers at the University of California at San Diego have figured out how to control certain features on a car via text.

Security team finds additional Android vulnerablility

Security team finds additional Android vulnerablility

By

An IBM security research team has uncovered an additional flaw in Android that can give a malicious app the ability to fully control a device.

Black Hat 2015: Vulnerability enables complete takeover of any Android device

By

An Android vulnerability - dubbed Certifi-gate - can enable an attacker to take over practically any device running the popular mobile operating system.

Tesla quickly fixes security flaw in Tesla S

By

Tesla Motors has already patched the flaw that allowed researchers to turn off and stop a Tesla S when it is driving at slow speed.

Square: Our card reader security software prevents hacks

Square: Our card reader security software prevents hacks

By

Square countered the claim of three Boston University graduates that its reader can be quickly and easily converted into a credit card skimmer.

Nearly 90 percent of Android devices vulnerable to endless reboot bug

Nearly 90 percent of Android devices vulnerable to endless reboot bug

By

The vulnerability can be exploited by either by a malicious app installed on the affected device, or by luring a user to a specially crafted website.

Majority of Android devices vulnerable to denial-of-service bug

Majority of Android devices vulnerable to denial-of-service bug

By

Trend Micro has identified a new Android denial-of-service bug that can be exploited to make devices unresponsive and practically unusable.

Critical Android bugs can be exploited via MMS, 950M users affected

Critical Android bugs can be exploited via MMS, 950M users affected

By

Successfully exploiting the vulnerabilities could allow an attacker to spy on users, or even completely take over the device.

Fake games in Google Play redirect Android users to porn sites

Fake games in Google Play redirect Android users to porn sites

By

The threat is detected by Avast as Clicker-AR, and by requesting a certain permission it can redirect Android users to porn sites via their browser or other apps.

iPhones, jailbroken and not, vulnerable to Hacking Team spyware, firm finds

iPhones, jailbroken and not, vulnerable to Hacking Team spyware, firm finds

By

Despite reports that iOS devices must be jailbroken before compromise, researchers found other ways to install the spyware.

Popular Android games on Google Play observed stealing Facebook credentials

Popular Android games on Google Play observed stealing Facebook credentials

By

Cowboy Adventure is a working game with between 500,000 and 1,000,000 downloads, but it is also malware that has been observed stealing Facebook credentials.

Encryption hearing focuses on retaining access to users' devices

By

FBI Director James Comey brought his case against encryption to the Senate Judiciary Committee on Wednesday and said it hampers terrorism investigations.

Google pulls phony BatteryBot Pro app from Play store

Google pulls phony BatteryBot Pro app from Play store

By

The malicious third-party Android app conducts click fraud, premium rate SMS fraud and downloads additional malicious APKs.

MasterCard testing facial recognition technology to verify online purchases

By

MasterCard has announced that it will begin using facial recognition and other biometric measures to verify payments in an effort to replace passwords.

More than 440K new Android malware strains found in Q1, study finds

More than 440K new Android malware strains found in Q1, study finds

By

Mobile malware jumped 6.4 percent from Q4 2015 to Q1 2015 with half of the malware being financially motivated, a G DATA study showed.

Is the password dead? Not just yet.

Mark Twain once said, "The report of my death was an exaggeration." Can the same be said for the password?

Checkmarx receives $84M investment

By

Application security firm Checkmarx announced on Thursday it received an $84M investment from Insight Venture Partners.

Samsung devices, including Galaxy S6, vulnerable to remote code execution

Samsung devices, including Galaxy S6, vulnerable to remote code execution

By

NowSecure detailed a vulnerability in Samsung's pre-installed Swift keyboard app that leaves device owners vulnerable to remote code execution.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US