Blog

Featured Post

TLS 1.3: 4 Key Takeaways for Mobile Security Teams
Understanding how TLS 1.3 protocols will affect mobile development and security practices is critical for any appdev or appsec team.
Read Now >
Featured Post

U.S. Soldiers and Athletes using STRAVA social fitness apps: Finding Risky Mobile Apps that Share and Leak Data
A series of mobile apps built by or connecting with STRAVA have been sharing and publishing activity by geolocation – including what should be highly confidential information about U.S. personnel and military staff locations. Get recommendations on how to protect your organization and staff from risks like STRAVA data collection and sharing.
Read Now >
Featured Post

Defense in Depth: A Layered Approach to Mobile Security with MDM, MAM & Mobile App Vetting
Enterprise mobility management (EMM) and mobile device management (MDM), containerization, mobile app security testing and certification, and 3rd-party mobile app vetting or mobile app reputation services (MARS) all play an important role in a solid, effective mobile app security strategy. Learn more about how to ensure defense-in-depth with a layered approach to mobile security.
Read Now >
Featured Post

Certificate Pinning and Hostname Verification: Don’t Get Pinned by a Mobile Man-In-The-Middle Attack
Recent news stories have brought attention to a research paper (“Spinner: Semi-Automatic Detection of Pinning without Hostname Verification”) published this week highlighting man-in-the-middle (MITM) vulnerabilities in a number of public mobile apps. The vulnerability springs from a failure to validate that the hostname on the certificate matches the actual host to which an app connects.
Read Now >
Featured Post

OnePlus Device Root Exploit: Backdoor in EngineerMode App for Diagnostics Mode
Learn more about the OnePlus device backdoor created by the EngineerMode App and how the NowSecure Threat Research Team helped verify this root exploit.
Read Now >

TLS 1.3: 4 Key Takeaways for Mobile Security Teams

Understanding how TLS 1.3 protocols will affect mobile development and security practices is critical for any appdev or appsec team.

Read Now >

#MobSec5 mobile security news for the week of Apr. 16

This week’s #MobSec5 includes: US-CERT issues network infrastructure device alert, iOS vulnerability exploits iTunes Wi-Fi Sync, study finds thousands of Android apps are improperly tracking kids’ data, and more!

Read Now >

#MobSec5 mobile security news for the week of Apr. 9

This week’s #MobSec5 includes: Fitbit app for cows, Hack in the Box Amsterdam presentations published (HITB), iOS 11.4 in public beta, interesting stats from Verizon’s mobile security index, and more!

Read Now >

#MobSec5 mobile security news for the week of Apr. 2

This week’s #MobSec5 includes: Cell phone spy devices discovered in D.C, Android releases critical bug fixes, FUZE Card vulnerability may expose credit card numbers, and more!

Read Now >

Top 10 Recommended Sessions at RSA 2018 – Insiders Guide for Mobile App Security from Agile to DevSecOps and More

RSA is around the corner starting April 17th! To help plan your agenda, we have crafted our Top 10 Recommended Sessions at RSA 2018. These are the sessions we want to attend and recommend all leaders check out, especially if you are responsible for mobile security or app security…or both.

Read Now >

#MobSec5 mobile security news for the week of Mar. 26

This week’s #MobSec5 includes: Cryptojackers look to mobile devices for power, key takeaways as TSL 1.3 (finally) passes, U.K. law enforcement’s use of mobile device extraction tech under fire, and more!

Read Now >

Blog

Featured Post

TLS 1.3: 4 Key Takeaways for Mobile Security Teams

Featured Post

U.S. Soldiers and Athletes using STRAVA social fitness apps: Finding Risky Mobile Apps that Share and Leak Data

Featured Post

Defense in Depth: A Layered Approach to Mobile Security with MDM, MAM & Mobile App Vetting

Featured Post

Certificate Pinning and Hostname Verification: Don’t Get Pinned by a Mobile Man-In-The-Middle Attack

Featured Post

OnePlus Device Root Exploit: Backdoor in EngineerMode App for Diagnostics Mode

TLS 1.3: 4 Key Takeaways for Mobile Security Teams

#MobSec5 mobile security news for the week of Apr. 16

#MobSec5 mobile security news for the week of Apr. 9

#MobSec5 mobile security news for the week of Apr. 2

Top 10 Recommended Sessions at RSA 2018 – Insiders Guide for Mobile App Security from Agile to DevSecOps and More

#MobSec5 mobile security news for the week of Mar. 26

Webinars

Best Practices

Resources

Solutions

Industries

Customers

Resources

Company

Labs

Blog

Featured Post

TLS 1.3: 4 Key Takeaways for Mobile Security Teams

Featured Post

U.S. Soldiers and Athletes using STRAVA social fitness apps: Finding Risky Mobile Apps that Share and Leak Data

Featured Post

Defense in Depth: A Layered Approach to Mobile Security with MDM, MAM & Mobile App Vetting

Featured Post

Certificate Pinning and Hostname Verification: Don’t Get Pinned by a Mobile Man-In-The-Middle Attack

Featured Post

OnePlus Device Root Exploit: Backdoor in EngineerMode App for Diagnostics Mode

Footer

Solutions

Industries

Customers

Resources

Company

Labs