NowSecure #MobSec5 - Week of September 25

Revue
 
Hiya,Welcome to the week's rundown of the mobile security news that matters -- the NowSecure #MobSec5
 
September 29 · Issue #75 · View online
NowSecure #MobSec5
Hiya,
Welcome to the week’s rundown of the mobile security news that matters – the NowSecure #MobSec5.
This week’s digest includes:
  • Dangerous Wi-Fi chip vulnerabilities in Apple devices – if you haven’t already (~71% of you according to some data), update to iOS 11 now
  • Malware on third-party app stores exploiting year-old Dirty COW vulnerability
  • Photo library permissions in iOS should be more granular
Thanks for reading. Have a great weekend, be good, and stay safe.

Over The Air - Vol. 2, Pt. 1: Exploiting The Wi-Fi Stack on Apple Devices | Project Zero Blog
Apple Releases iOS 11.0.1 Update With Fix for Exchange Email Bug | Mac Rumors
An easy way to access the user's iOS location data without actually having access | Felix Krause via GitHub
About Face ID advanced technology | Apple Support
Android and iOS apps used for stock trading could expose your personal data to hackers | International Business Times
Proof of Concept iOS app that can be used to display currently installed apps on a device without being restricted by the Sandbox | Pierre Blazquez via GitHub
Keystore Key Attestation | Android Developers Blog
Android Lockscreen Patterns Less Secure Than PINs | Threatpost
CLKSCREW: Exposing the perils of security-oblivious energy management | the morning paper
In a first, Android apps abuse serious “Dirty Cow” bug to backdoor phones | Ars Technica
Did Mexico Drop $5 Million On This 'Unlimited' Uber-Stealth Spy Tech? | Forbes
Telegram CEO Durov Says Russia's FSB Demands Messenger's Encryption Keys | RadioFreeEurope
China disrupts WhatsApp ahead of Communist Party meeting - BBC News
Did you enjoy this issue?
Thumbs up 1ae5a7bdfcd3220e2b376aa0c1607bc5edaba758e5dd83b482d03965219a220b Thumbs down e13779fa29e2935b47488fb8f82977fedcf689a0cc0cc3c19fa3c6bb14d1493b
Carefully curated by NowSecure #MobSec5 with Revue.
If you were forwarded this newsletter and you like it, you can subscribe here.
If you don't want these updates anymore, please unsubscribe here.