mobile security Archives - Page 13 of 13

Android Vulnerabilities: Attacking Nexus 6 and 6P Custom Boot Modes

Issued by: Security Intelligence

In recent months, the X-Force Application Security Research Team has discovered several previously undisclosed Android vulnerabilities. The November 2016 and January 2017 Android Security Bulletins included patches to one high-severity vulnerability, CVE-2016-8467, in Nexus 6 and 6P. Our new paper, “Attacking Nexus 6 & 6P Custom Bootmodes,” discusses this vulnerability as well as CVE-2016-6678.

Malware & Threats

“Switcher” Android Trojan Hacks Routers, Hijacks Traffic

Issued by: Security Week

Researchers at Kaspersky Lab have come across a new Android Trojan that hacks routers and changes their DNS settings in an effort to redirect traffic to malicious websites. Dubbed “Switcher,” the malware has been disguised as an Android client for the Chinese search engine Baidu, and a Chinese app for sharing Wi-Fi network details. Once…

Malware & Threats

Avoiding the Technology Upgrade? Don’t Dodge Security

Issued by: Security Intelligence

Consumers love new technology. New iterations of iPhones or brand-specific Androids are embraced by devotees looking to analyze the latest features, dissect any potential flaws and conduct entirely biased comparisons to determine which device is best. Beyond the high-profile advertising that accompanies emerging tech, however, is the underlying software update that typically addresses issues such…

Vulnerabilities

Protect Sensitive Files With Document Security Management

Issued by: Security Intelligence

When it comes to data security, documents matter. Most organizations have invested in tools that enable them to securely manage their sensitive documents. They are struggling, however, to compel employees to use these tools consistently and correctly. Throughout the IT industry, actual document management and security practices fall seriously short. Malware-infected files frequently penetrate networks…

Mobile Security

Security Starts With People: What it Takes to Ensure Simple Yet Strong Authentication on Mobile

Issued by: Security Intelligence

Before I was in the identity and access management (IAM) space, I hardly ever thought about strong authentication or the role of IAM as a standalone discipline beyond the occasional time I forgot my username or password. If I have learned one thing, however, it’s that security truly starts with people. Think about some of…

Mobile Security

Mobile subscriber identity numbers can be exposed over Wi-Fi

Issued by: CIO Security

For a long time, law enforcement agencies and hackers have been able to track the identity and location of mobile users by setting up fake cellular network towers and tricking their devices to connect to them. Researchers have now found that the same thing can be done much more cheaply with a simple Wi-Fi hotspot….

Malware & Threats, Mobile Security

GM Bot: Alive and Upgraded, Now on Android M

Issued by: Security Intelligence

IBM X-Force Research detected a recently updated version of the GM Bot mobile banking malware designed to deploy on Android 6 operating systems and bypass new security applied to the platform. Android officially released this Marshmallow OS, code-named M, in October 2015. The GM Bot version we analyzed can work on all Android versions up…

Malware & Threats, Mobile Security

Android.Lockscreen ransomware now using pseudorandom numbers

Issued by: Symantec Blog

New variants of Android.Lockscreen are using pseudorandom passcodes to prevent victims from unlocking devices without paying the ransom. Previous versions of these threats locked the screen and used a hardcoded passcode, but analysts were able to reverse engineer the code to provide victims with the passcode to unlock their devices. Attackers have also combined a…