Researchers have noted a lack of authentication in the Apple Device Enrollment Program that could allow a malicious actor to steal Wi-Fi passwords and VPN configurations. The vulnerability was dug out by Duo Labs who found Apple’s device enrollment program (DEP) has an authentication weakness that can be exploited when organizations use Apple’s mobile device…
The personal email accounts of senators and their aides are in the crosshairs of nation-state hackers, Sen. Ron Wyden, D-Ore., warned Senate leaders in a letter that took the body’s security office to task for failing to safeguard them. Noting that “at least one major technology company” had notified some senators and their aides that…
The proclivity of former White House aide Omarosa Manigault Newman to record conversations with colleagues, including the president and her firing in the Situation Room by Chief of Staff John Kelly, has prompted the administration to further restrict staffers use of mobile devices in the West Wing. An earlier policy enacted 19 months ago called…
A series of 68 apps created by five different publishers found on Google Play that promise capabilities like games, phone hacking and phone number but really deliver little or no functionality have been uncovered by a recent study.
Kryptowire researchers funded by the Department of Homeland Security spotted vulnerabilities built into phones at all major U.S. carriers.
The National Institute of Standards and Technology (NIST) has issued a revised draft and a call for public comment for Special Publication 800-163 Vetting the Security of Mobile Applications that is designed to give organizations basic guidance on app security.
Israeli soldiers have recently been enticed into downloading malicious Android World Cup and dating apps that secretly allowed Hamas militants to spy on their fellow troops, according to various reports citing Israeli military intelligence
The AsiaHitGroup Gang earlier this year released its third wave of fraudulent apps into Google Play, this time one that uses a silent background push notification to subscribe their victim to a premium mobile service.
The Python code-based PBot (PythonBot) adware family, much like its reptilian cousins, has continued to grow from when it was first spotted last year adding several new features, including a cryptocurrency miner.
A new malicious Android app has infected at least 60,000 devices gaining the ability to extract some important information from each device along with installing some ad click malware.
