Welcome to this week’s round-up of mobile security news that matters, in no particular order – the NowSecure #MobSec5.
This edition includes:
- Bad guys beat Brian Krebs?
- The time is NOW to invest in mobile security
- Well THAT was quick – iPhone 7 jailbreak
- Bypassing passwords in iOS 10
Have a great weekend, be good, and stay safe.
Your Biggest Cybersecurity Weakness Is Your Phone | Harvard Business Review
This article illuminates some of the reasons why the time is now for enterprises to invest in fending off mobile threats. Unfortunately, the article doesn’t go far enough–it fails to explain the damage done by leaky, insecure mobile apps and what chief information officers (CIOs) and chief information security officers (CISOs) can do to stem the tide. Smartphones now play the role of an identity device used to access critical business assets that rely on two-factor authentication. It’s reasonable to speculate that securing the device itself is something that will be accomplished through the operating system and with handset features. But, the security level of mobile apps remain a weak link in the chain.
iPhone 7 Jailbreak Has Already Been Achieved In Just 24 Hours! | The Hacker News
Krebs Website Offline After Akamai Withdraws DDoS Protection | Infosecurity Magazine
Because at time of writing krebsonsecurity.com is still down, here’s a link to an archived copy of Brian Krebs’s blog post describing one of the largest denial-of-service attacks cloud-hosting provider Akamai has ever seen.
Akamai hosted Krebs’s website at no charge and told him they could no longer do so as a result of the attack. Of the revocation of services Krebs stated on Twitter, “I can’t really fault Akamai for their decision. I likely cost them a ton of money today,” and, “Before everyone beats up on Akamai/Prolexic too much, they were providing me service pro bono. So, as I said, I don’t fault them at all.” Even so, we can’t help but think of this as a win for the bad guys.
Announcing NowSecure Lab Automated | NowSecure Blog
This week marked an exciting one for NowSecure as we officially launched a first-of-its-kind automated mobile app security testing solution–Lab Automated–on Tuesday. If you struggle with waiting days or weeks for a mobile app security assessment, and the idea of receiving results within minutes piques your interest, reach out to us to see Lab Automated live in action.
Sign-up to get the #MobSec5 weekly e-mail newsletter in your inbox.