Blog

Featured Post

U.S. Soldiers and Athletes using STRAVA social fitness apps: Finding Risky Mobile Apps that Share and Leak Data
A series of mobile apps built by or connecting with STRAVA have been sharing and publishing activity by geolocation – including what should be highly confidential information about U.S. personnel and military staff locations. Get recommendations on how to protect your organization and staff from risks like STRAVA data collection and sharing.
Read Now >
Featured Post

Defense in Depth: A Layered Approach to Mobile Security with MDM, MAM & Mobile App Vetting
Enterprise mobility management (EMM) and mobile device management (MDM), containerization, mobile app security testing and certification, and 3rd-party mobile app vetting or mobile app reputation services (MARS) all play an important role in a solid, effective mobile app security strategy. Learn more about how to ensure defense-in-depth with a layered approach to mobile security.
Read Now >
Featured Post

Certificate Pinning and Hostname Verification: Don’t Get Pinned by a Mobile Man-In-The-Middle Attack
Recent news stories have brought attention to a research paper (“Spinner: Semi-Automatic Detection of Pinning without Hostname Verification”) published this week highlighting man-in-the-middle (MITM) vulnerabilities in a number of public mobile apps. The vulnerability springs from a failure to validate that the hostname on the certificate matches the actual host to which an app connects.
Read Now >
Featured Post

OnePlus Device Root Exploit: Backdoor in EngineerMode App for Diagnostics Mode
Learn more about the OnePlus device backdoor created by the EngineerMode App and how the NowSecure Threat Research Team helped verify this root exploit.
Read Now >
Featured Post

New Mobile Risk: Cracking Wi-Fi Encryption with Key Reinstallation Attacks (KRACK)
Key reinstallation attacks (KRACK) put Wi-Fi security, mobile devices & mobile apps at risk. Learn what you need to do to protect your enterprise.
Read Now >

#MobSec5 mobile security news for the week of Apr. 16

This week’s #MobSec5 includes: US-CERT issues network infrastructure device alert, iOS vulnerability exploits iTunes Wi-Fi Sync, study finds thousands of Android apps are improperly tracking kids’ data, and more!

Read Now >

#MobSec5 mobile security news for the week of Apr. 9

This week’s #MobSec5 includes: Fitbit app for cows, Hack in the Box Amsterdam presentations published (HITB), iOS 11.4 in public beta, interesting stats from Verizon’s mobile security index, and more!

Read Now >

#MobSec5 mobile security news for the week of Apr. 2

This week’s #MobSec5 includes: Cell phone spy devices discovered in D.C, Android releases critical bug fixes, FUZE Card vulnerability may expose credit card numbers, and more!

Read Now >

Top 10 Recommended Sessions at RSA 2018 – Insiders Guide for Mobile App Security from Agile to DevSecOps and More

RSA is around the corner starting April 17th! To help plan your agenda, we have crafted our Top 10 Recommended Sessions at RSA 2018. These are the sessions we want to attend and recommend all leaders check out, especially if you are responsible for mobile security or app security…or both.

Read Now >

#MobSec5 mobile security news for the week of Mar. 26

This week’s #MobSec5 includes: Cryptojackers look to mobile devices for power, key takeaways as TSL 1.3 (finally) passes, U.K. law enforcement’s use of mobile device extraction tech under fire, and more!

Read Now >

#MobSec5 mobile security news for the week of Mar. 19

This week’s #MobSec5 includes: Personal data misuse disguised as a social media quiz and an app causes quite a stir, Chinese smartphone maker loses another U.S. retailer, file sharing company makes security-first updates to its VDP guidelines, more!

Read Now >

Blog

Featured Post

U.S. Soldiers and Athletes using STRAVA social fitness apps: Finding Risky Mobile Apps that Share and Leak Data

Featured Post

Defense in Depth: A Layered Approach to Mobile Security with MDM, MAM & Mobile App Vetting

Featured Post

Certificate Pinning and Hostname Verification: Don’t Get Pinned by a Mobile Man-In-The-Middle Attack

Featured Post

OnePlus Device Root Exploit: Backdoor in EngineerMode App for Diagnostics Mode

Featured Post

New Mobile Risk: Cracking Wi-Fi Encryption with Key Reinstallation Attacks (KRACK)

#MobSec5 mobile security news for the week of Apr. 16

#MobSec5 mobile security news for the week of Apr. 9

#MobSec5 mobile security news for the week of Apr. 2

Top 10 Recommended Sessions at RSA 2018 – Insiders Guide for Mobile App Security from Agile to DevSecOps and More

#MobSec5 mobile security news for the week of Mar. 26

#MobSec5 mobile security news for the week of Mar. 19

Webinars

Best Practices

Resources

Solutions

Industries

Customers

Resources

Company

Labs

Blog

Featured Post

U.S. Soldiers and Athletes using STRAVA social fitness apps: Finding Risky Mobile Apps that Share and Leak Data

Featured Post

Defense in Depth: A Layered Approach to Mobile Security with MDM, MAM & Mobile App Vetting

Featured Post

Certificate Pinning and Hostname Verification: Don’t Get Pinned by a Mobile Man-In-The-Middle Attack

Featured Post

OnePlus Device Root Exploit: Backdoor in EngineerMode App for Diagnostics Mode

Featured Post

New Mobile Risk: Cracking Wi-Fi Encryption with Key Reinstallation Attacks (KRACK)

Footer

Solutions

Industries

Customers

Resources

Company

Labs