Category Archives: Mobile Security

Android Lockscreen Patterns Less Secure Than PINs

Researchers settle PIN versus pattern debate with study that proves a low-tech hack makes cracking an unlock screen simple.

Continue reading

Posted in Android Phone, Annual Computer Security Applications Conference, feedback lines, iPhones, Mechanical Turk crowdsourcing, Mobile Security, PIN, Privacy, Security, swipe pattern | Leave a comment

What’s New In Android 8.0 Oreo Security

Google’s Android security team has turned a corner with 8.0 Oreo, reducing the attack surface, compartmentalizing components and beefing up protection against rogue apps.

Continue reading

Posted in Android 8.0, Android Compartmentalization, Android Oreo, Android Security, device permissions, google, Mobile Security, Project Treble, Security, System Alerts, Verified Boot | Leave a comment

Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

Google has ejected 50 apps from its Google Play store that were harboring mobile malware dubbed ExpensiveWall.

Continue reading

Posted in Android, Dvmap, ExpensiveWall, google play, GTK, Javascript, JavascriptInterface, Judy, malicious iFrames, Malware, Mobile Security, premium SMS messages, Security, SMSVova, SonicSpy, WebView, Ztorg | Leave a comment

Wireless ‘BlueBorne’ Attacks Target Billions of Bluetooth Devices

Bluetooth attack vector, dubbed ‘BlueBorne’, leaves billions of smart Bluetooth devices open to attack including Android and Apple phones and millions more Linux-based smart devices.

Continue reading

Posted in Android, Armis, blueborne, BlueBorne attack, Bluetooth, BlueZ, ios, IoT, Linux, man-in-the-middle, Microsoft, Mobile Security, Pineapple, Privacy, RCE, Security, Vulnerabilities, windows vista | Leave a comment

Tor Project Brings Security Slider Feature to Android App Orfox

Tor Project developers recently bolstered Orfox, a Tor Browser for Android devices, to help privacy-conscious mobile browsers better customize their security.

Continue reading

Posted in Android, Firefox, mobile privacy, Mobile Security, Orfox, Privacy, Security, Tor Browser | Leave a comment

Threatpost News Wrap, September 1, 2017

The Onliner spambot, Google’s forthcoming Not Secure warnings for Chrome, the WireX botnet, Sarahah privacy and more are discussed.

Continue reading

Posted in Android, botnet, chrome, google, HTTPS, Mobile Security, Not Secure, Onliner, Podcasts, Privacy, Sarahah, Security, Spam, spambot, Troy Hunt, Vulnerabilities, Web Security, WireX | Leave a comment

Anonymous Messaging App Sarahah to Halt Collection of User Data With Next Update

The anonymous messaging app Sarahah says it plans to remove a feature that uploads users contacts, including phone numbers and email addresses to the company’s servers, in the next update.

Continue reading

Posted in Android, anonymity, Anonymous messaging app, google play, ios, iTunes App Store, Mobile Security, Privacy, Sarahah, Security | Comments Off on Anonymous Messaging App Sarahah to Halt Collection of User Data With Next Update

CopyCat Malware Infected 14M Android Devices, Rooted 8M, in 2016

Over the course of two months last year the Copycat malware infected 14 million Android devices and rooted more than half of them, roughly eight million devices.

Continue reading

Posted in Android malware, Check Point, CopyCat, Daniel Padon, google, Malware, mobile malware, Mobile Security, Security | Comments Off on CopyCat Malware Infected 14M Android Devices, Rooted 8M, in 2016

Svpeng Behind a Spike in Mobile Ransomware

Mobile ransomware attacks spike in the first quarter of 2017, growing three and a half times compared to the previous year.

Continue reading

Posted in Android malware, Android OS, Android ransomware, banking trojan, Cryptography, Fusob, Hacks, Kaspersky Lab, Kaspersky Security Network, Malware, mobile ransomware, Mobile Security, RaaS, ransomware, ransomware as a service, Ransomware in 2016-2017, Security, Svpeng, xxxPlayer | Comments Off on Svpeng Behind a Spike in Mobile Ransomware

Threatpost News Wrap, June 23, 2017

Mike Mimoso and Chris Brook discuss the news of the week, including Citizen Lab’s latest report, WannaCry hitting Honda, GhostHook, and Fireball.

Continue reading

Posted in Citizen Lab, Fireball, GhostHook, Government, Honda, Intel, Malware, México, Microsoft, Mobile Security, Podcasts, Privacy, ransomware, Security, SMB, SMBv1, University College London, Vulnerabilities, WannaCry | Comments Off on Threatpost News Wrap, June 23, 2017