View profile

NowSecure #MobSec5 - Week of September 25

Revue
 
Hiya, Welcome to the week's rundown of the mobile security news that matters -- the NowSecure #MobSec
 
September 29 · Issue #75 · View online
NowSecure #MobSec5
Hiya,
Welcome to the week’s rundown of the mobile security news that matters – the NowSecure #MobSec5.
This week’s digest includes:
  • Dangerous Wi-Fi chip vulnerabilities in Apple devices – if you haven’t already (~71% of you according to some data), update to iOS 11 now
  • Malware on third-party app stores exploiting year-old Dirty COW vulnerability
  • Photo library permissions in iOS should be more granular
Thanks for reading. Have a great weekend, be good, and stay safe.

Over The Air - Vol. 2, Pt. 1: Exploiting The Wi-Fi Stack on Apple Devices | Project Zero Blog
Apple Releases iOS 11.0.1 Update With Fix for Exchange Email Bug | Mac Rumors
An easy way to access the user's iOS location data without actually having access | Felix Krause via GitHub
About Face ID advanced technology | Apple Support
Android and iOS apps used for stock trading could expose your personal data to hackers | International Business Times
Proof of Concept iOS app that can be used to display currently installed apps on a device without being restricted by the Sandbox | Pierre Blazquez via GitHub
Keystore Key Attestation | Android Developers Blog
Android Lockscreen Patterns Less Secure Than PINs | Threatpost
CLKSCREW: Exposing the perils of security-oblivious energy management | the morning paper
In a first, Android apps abuse serious “Dirty Cow” bug to backdoor phones | Ars Technica
Did Mexico Drop $5 Million On This 'Unlimited' Uber-Stealth Spy Tech? | Forbes
Telegram CEO Durov Says Russia's FSB Demands Messenger's Encryption Keys | RadioFreeEurope
China disrupts WhatsApp ahead of Communist Party meeting - BBC News
Did you enjoy this issue?
If you don't want these updates anymore, please unsubscribe here
If you were forwarded this newsletter and you like it, you can subscribe here
Powered by Revue