View profile

NowSecure #MobSec5 - Week of December 3

December 7 · Issue #132 · View online
NowSecure #MobSec5
Low- and no-code mobile app development tools provide drag-and-drop graphical user interfaces, forms and visual workflows to enable businesses to quickly build mobile apps with little to no coding. The downside of empowering new ranks of citizen developers is that security may not looped into some of these initiatives.
Whether they are developed in-house or outsourced, all apps must be thoroughly tested for security, privacy and protection of sensitive data. Learn best practices for safely incorporating these app dev platforms into your organization in this blog.
Your highlights for the week are as follows:
  • Google Play removes 22 malicious apps
  • Beware of the security risks of third-party app stores
  • Fitness tracking iOS apps scam payments
  • GSA aims to blend mobility into DevSecOps
  • End-to-end fuzzing finds bugs in WebRTC

22 apps with 2 million+ Google Play downloads had a malicious backdoor | Ars Technica
What are the security risks of third-party app stores? | TechTarget
Scam iOS apps promise fitness, steal money instead | We Live Security
GSA looking to bake mobility into its DevSecOps in 2019 | Fedscoop
Project Zero: Adventures in Video Conferencing Part 1: The Wild World of WebRTC | Project Zero
Did you enjoy this issue?
In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Powered by Revue