In 2020, several mobile application security threats put customer data at risk and jeopardized revenue and brand reputation. Here are five mobile app security issues and privacy breaches that stood out in a year of rapid digital transformation.
NowSecure analyzed a mix of 75 Android and iOS holiday mobile apps for security and privacy risks. Overall, the results of our benchmark testing were disappointingly poor. Among the holiday apps we tested, 94% have security issues and 82% leak private data which indicates users should proceed with caution.
Mobile apps have become a top target for attackers and a high-risk vector for users and businesses alike. In fact, Gartner has warned, “Through 2022, mobile application security failures will be the biggest mobile threat for enterprises.” In order for their digital transformation efforts to succeed, companies must offer an innovative mobile app user experience combined with proper security and privacy protections.
NowSecure Mobile Security Researcher Dawn Isabel has been an avid contributor to bug bounties over the years and has earned many accolades. Before joining the expert research team at NowSecure, Isabel amassed well-rounded experience at IOActive, Hewlett Packard Enterprise, the University of Michigan and Ford Motor Company. We recently spoke with
Isabel about testing the security of iOS and Apple Watch apps, the bug bounty community, and the tools she uses most.
NowSecure announces the release of NowSecure Workstation 6.0. The turnkey hardware and software kit that empowers analysts to quickly conduct deep mobile application security assessments of Android and iOS apps and generate customized reports with actionable results users can trust. Traditional mobile app penetration testing can consume at least two weeks of manual effort and requires ample expertise and an abundance of open-source tools. NowSecure Workstation reduces testing time from weeks to mere hours, driving dramatic 10x productivity gains and scalability.
Whether you’re a novice mobile app developer, a seasoned mobile application security analyst or somewhere in between, here’s a roundup of 31 best practices to hone your secure coding and mobile appsec testing skills. You can find useful advice from NowSecure experts in our twice-monthly “All Things Mobile DevSecOps” newsletter — subscribe now to be in the know.