Archive for the 'security' Category

Android Malware Cross-infection

Thursday, January 23rd, 2014

I continue to think that this year is going to be an eventful year for Android malware and the knock on effects. Only today, I heard that Windows malware is starting to attempt to infect connected Android devices.
Google isn’t standing still. In unrelated news, Google have introduced a change to future versions of Android […]

Banking Apps Leaking Information

Friday, January 10th, 2014

There’s a new informative article at IOActive on how personal banking apps leak information. While the article concentrates on banking apps and iOS, the information is just as applicable to other types of apps and other mobile operating systems such as Android.
Ariel Sanchez of IOActive Labs took a look at 40 banking apps from the […]

Poor Apps from Large Companies

Friday, September 20th, 2013

Why is it that the larger the company, usually the worse the app? This week I migrated all my SIMs over to Vodafone because T-Mobile  is degrading their 3G network by introducing 4G. I was pleased to see there is a My Vodafone app that allows me to view my usage, check for WiFi points and […]

Sophisticated Android Malware

Wednesday, June 12th, 2013

I generally ignore the noise spouted by (mobile) anti-virus vendors as it’s often spreading fear that’s out of proportion to the actual risk. However, a recent blog post by Roman Unuchek of Kaspersky tells of a new sophisticated Android Trojan that’s very interesting. Also, some of the techniques used by the malware can be used by […]

Android App Analysis

Tuesday, May 21st, 2013

There’s a growing number of tools that analyse Android .apks for app vulnerabilities, over zealous permissions, data leakage and malware. You can find a great list at ashishb.net.
I expect tools such as these and those provided by security consultancies will more important as Android becomes even more popular and pervasive. This takes me back to […]

Android Popularity

Thursday, May 16th, 2013

IDC has new Worldwide statistics that show for Q1 2013 Android and iOS represented 92.3% of all smartphone OS Shipments. Android had a 75% market share, iOS 17.3%, Windows Phone 3.2% and BlackBerry 2.9%.
 

From my perspective, as predominantly an Android developer, I can see Android has ‘grown up’. Companies are no longer going iOS first […]

Android Anti-Virus Software Prone to Transformation Attacks

Tuesday, May 7th, 2013

Security Week has an interesting article on Android anti-virus software. In summary, most Android anti-virus software relies on signature based analysis that’s easily fooled using simple obfuscation techniques. Obfuscation is more usually used by developers to hide source code from hackers but it can be used by the hackers themselves to transform code into new […]

Securing Your Private Parts

Tuesday, February 12th, 2013

If you are working on a secure app, for example a banking or payment app, you should be thinking about how to secure your ‘private parts’. This might be, for example, login information or secure tokens. Relying on sandboxed areas being inaccessible to other apps isn’t good enough because rooted devices and some vulnerabilities can […]