Category Archives: Mobile Security

1M Downloads Later, Google Pulls Phony WhatsApp From Google Play

An adware-laden phony WhatsApp download has been removed from Google Play and the developer’s account suspended, but not before it was downloaded one million times.

Continue reading

Posted in Adware, google, google play, malicious apps, Malware, mobile applications, Mobile Security, Play Protect, potentially unwanted apps, PUPs, Security, Unicode | Leave a comment

Down the Rabbit Hole with a BLU Phone Infection

Much-maligned BLU phones have been a privacy and spyware nightmare. Threatpost shares the story of one victim who experienced firsthand a relentless wave of unwanted programs, spyware and frustration.

Continue reading

Posted in Adups, Android malware, autorooting malware, Blu, firmware updates, Kryptowire, Malware, mobile malware, Mobile Security, Security, Shedun, Ztorg | Comments Off on Down the Rabbit Hole with a BLU Phone Infection

iOS Password Prompts are Ripe for Abuse

Apple’s password prompts for iOS devices are an easy target for phishing attacks to steal iTunes passwords and IDs.

Continue reading

Posted in Hacks, ios, iOS app, iOS Password Prompt, itunes, iTunes ID, Mobile Security, Phishing, Privacy, Security, UIAlertController | Comments Off on iOS Password Prompts are Ripe for Abuse

Threatpost News Wrap, September 29, 2017

The macOS Keychain attack, Signal’s new private contact discovery service, the Deloitte hack, and a handful of mobile stock trading app vulnerabilities are discussed.

Continue reading

Posted in Apple vulnerabilities, Cloud Security, Deloitte, Deloitte hack, encrypted messaging, Hacks, IOActive, macOS, macOS High Sierra, Mobile Security, Mobile vulnerabilities, Moxie Marlinspike, Patrick Wardle, Podcasts, Privacy, secure messaging apps, Security, Signal, stock trading apps, Synack, Vulnerabilities | Comments Off on Threatpost News Wrap, September 29, 2017

Android Lockscreen Patterns Less Secure Than PINs

Researchers settle PIN versus pattern debate with study that proves a low-tech hack makes cracking an unlock screen simple.

Continue reading

Posted in Android Phone, Annual Computer Security Applications Conference, feedback lines, iPhones, Mechanical Turk crowdsourcing, Mobile Security, PIN, Privacy, Security, swipe pattern | Comments Off on Android Lockscreen Patterns Less Secure Than PINs

What’s New In Android 8.0 Oreo Security

Google’s Android security team has turned a corner with 8.0 Oreo, reducing the attack surface, compartmentalizing components and beefing up protection against rogue apps.

Continue reading

Posted in Android 8.0, Android Compartmentalization, Android Oreo, Android Security, device permissions, google, Mobile Security, Project Treble, Security, System Alerts, Verified Boot | Comments Off on What’s New In Android 8.0 Oreo Security

Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

Google has ejected 50 apps from its Google Play store that were harboring mobile malware dubbed ExpensiveWall.

Continue reading

Posted in Android, Dvmap, ExpensiveWall, google play, GTK, Javascript, JavascriptInterface, Judy, malicious iFrames, Malware, Mobile Security, premium SMS messages, Security, SMSVova, SonicSpy, WebView, Ztorg | Comments Off on Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

Wireless ‘BlueBorne’ Attacks Target Billions of Bluetooth Devices

Bluetooth attack vector, dubbed ‘BlueBorne’, leaves billions of smart Bluetooth devices open to attack including Android and Apple phones and millions more Linux-based smart devices.

Continue reading

Posted in Android, Armis, blueborne, BlueBorne attack, Bluetooth, BlueZ, ios, IoT, Linux, man-in-the-middle, Microsoft, Mobile Security, Pineapple, Privacy, RCE, Security, Vulnerabilities, windows vista | Comments Off on Wireless ‘BlueBorne’ Attacks Target Billions of Bluetooth Devices

Tor Project Brings Security Slider Feature to Android App Orfox

Tor Project developers recently bolstered Orfox, a Tor Browser for Android devices, to help privacy-conscious mobile browsers better customize their security.

Continue reading

Posted in Android, Firefox, mobile privacy, Mobile Security, Orfox, Privacy, Security, Tor Browser | Comments Off on Tor Project Brings Security Slider Feature to Android App Orfox

Threatpost News Wrap, September 1, 2017

The Onliner spambot, Google’s forthcoming Not Secure warnings for Chrome, the WireX botnet, Sarahah privacy and more are discussed.

Continue reading

Posted in Android, botnet, chrome, google, HTTPS, Mobile Security, Not Secure, Onliner, Podcasts, Privacy, Sarahah, Security, Spam, spambot, Troy Hunt, Vulnerabilities, Web Security, WireX | Comments Off on Threatpost News Wrap, September 1, 2017