View profile

NowSecure #MobSec5 - Week of July 23rd

Revue
 
This week, NowSecure released a benchmark analysis of 45,000 mobile apps in both Apple App Store and
 
July 27 · Issue #114 · View online
NowSecure #MobSec5
This week, NowSecure released a benchmark analysis of 45,000 mobile apps in both Apple App Store and Google Play Store which identified 85% violate at least one of the OWASP Mobile Top 10 guidelines - raising end-user privacy risks with insecure data storage, insecure network communications, and insecure coding practices. To review the results of the analysis, click here.
It’s been a very busy week in the world of mobile application security, so let’s get to it. Here are your highlights from this week:

  • NIST releases draft of mobile app security recommendations
  • Researchers find malware that spreads via open Android Debug Bridge (ADB) ports
  • Twitter restricting access to APIs and removing malicious apps that violate policies
  • Malicious app developers using “droppers” to sneak malware into Google Play apps
  • New mobile app enables users to earn rewards by tracking ground mileage
  • Putin’s soccer ball gift to Trump has a communication chip inside
  • The high stakes of false positives on Amazon’s facial recognition system
  • Flaw in home security monitoring mobile app allows interception of customer audio and video feeds
  • And More!

NIST Set to Update Mobile App Security Recommendations | eWeek
Amazon’s facial recognition matched 28 members of Congress to criminal mugshots | The Verge
Open ADB Ports Being Exploited to Spread Possible Satori Variant in Android Devices | TrendLabs Security Intelligence Blog
Swann's home security camera recordings could be hijacked | BBC News
Malicious Android apps sneak malware onto your phone with droppers | Mashable
Twitter Continues Cleanup and Cracks Down on Malicious Apps | WIRED
Miles is an app that tracks your every move in exchange for deals and discounts | The Verge
No joke: Trump's new Putin soccer ball might actually have a hidden radio | CNET
Did you enjoy this issue?
If you don't want these updates anymore, please unsubscribe here
If you were forwarded this newsletter and you like it, you can subscribe here
Powered by Revue