It’s been an engaging, inspiring and somewhat tiring week for NowSecure as employees from around the globe gathered in New Orleans to plan for the year ahead. We discussed product roadmap, enhancements to our services programs and heard great feedback from customers about how they’re using our solutions to ensure the security of their mobile apps.
Your highlights for the week are as follows:
- Users still await fix for major FaceTime security flaw
- Facebook faces fallout from another data privacy scandal
- Android Q may allow IT managers to downgrade app versions
- Apple restores Google’s access to internal iOS apps
- New York Attorney General enforces mobile app security
Subscribe now to receive #MobSec5 updates each Friday in your inbox.
“Apple on Friday apologized for a massive FaceTime flaw that allowed folks to eavesdrop on other people. It said a fix that will re-enable group FaceTime is now scheduled to be released next week.”
“Facebook sidesteps the App Store and rewards teenagers and adults to download the Research app and give it root access to network traffic in what may be a violation of Apple policy so the social network can decrypt and analyze their phone activity, a TechCrunch investigation confirms.”
Facebook is under fire once again for its data gathering practices. Participants in the program side loaded the research app and may have been unaware that they were granting root access to much of their digital comings and goings. NowSecure takes privacy seriously and our solutions help organizations uncover privacy risks in in-house, outsourced, and third-party developed mobile apps.
“I saw a very interesting report this week — from the reliable XDA Developers.com site — that the upcoming Android OS, Android Q, will let IT shops downgrade apps. That means that if a third-party app or even Android native app update presents problems, such as conflicting with other apps or opening a security hole or doing something else headache-inducing, IT can simply click and go back to the version from an hour or two earlier.”
“On Thursday evening, Apple restored Google’s access to its own internal iOS apps, just hours after it made a similar move with Facebook’s private iPhone apps.”
“The settlements serve as an important reminder for app developers and operators to continually test their apps for security vulnerabilities and design apps with security in mind – ensuring that sensitive information is protected both in transmission and at rest.”
If you want to receive #MobSec5 updates each Friday in your inbox, subscribe now.