Mobile malware News
April 05, 2017
One of the more malicious iOS threats -- Pegasus malware -- has made its way to Android devices and it has some dangerous new tricks in its arsenal.
December 22, 2016
Researchers found the Fancy Bear threat group used mobile malware to track the Ukraine military, lending more confidence to assertions the group is linked to the Russian government.
December 02, 2016
Android app security is under attack this week with vulnerabilities in the popular app, AirDroid, and malware that steals Google account authentication tokens.
March 10, 2016
These common mobile security threats are rapidly growing due to user negligence, and because IT doesn't always know the best ways to combat them.
Mobile malware Get Started
Bring yourself up to speed with our introductory content
A proof-of-concept attack on Apple's Siri allowed researchers to steal data from iOS. Learn more about the iStegSiri attack and how to defend against such threats. Continue Reading
A sophisticated variant of the NotCompatible malware has emerged that is difficult to detect and defend against. Expert Nick Lewis offers tips for handling NotCompatible.C. Continue Reading
Expert Ed Tittel explains why all organizations, no matter their size, need to protect endpoints with antimalware products. Continue Reading
Evaluate Mobile malware Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
SandJacking, a new iOS attack technique, uses an XCode certificate flaw to load malicious apps onto devices. Expert Michael Cobb explains how the attack works. Continue Reading
Some endpoint security suites have reached a level where they create almost all the capabilities of an enterprise in microcosm. New emphasis has been placed on protections that don't depend on traditional static scanning, but how well are these various approaches (whitelisting, sandboxing and so on) working out? And could the cloud possibly be the best endpoint security solution in today's mobile age? This handbook looks at the current state of endpoint protection and offers tips on how to best ensure endpoint security in the future.
SearchSecurity contributors examine the question of how best to secure endpoints, and provide actionable advice. Karen Scarfone questions the all-too-common assumption that using the cloud undermines security, and also outlines specific ways in which cloud-based tools can be useful in improving endpoint security. In a separate chapter, Scarfone considers whether the best endpoint security is achieved by combining tools and methods -- that is, by using an endpoint security suite. Ed Tittel focuses on the threat to endpoint security from malware and how antimalware tools can beef up defenses, offering scenarios that show how antimalware products work to secure endpoints. Continue Reading
Dealing with mobile application malware is a fluid process. IT needs a policy for vetting apps and educating users about potential security risks. Continue Reading
Manage Mobile malware
Learn to apply best practices and optimize your operations.
In this excerpt from chapter three of Mobile Data Loss, author Michael T. Raggo discusses mobile security countermeasures. Continue Reading
From compliance to security to app development, mobility adds a new layer of challenge for admins to deal with. Find out how to handle five of the most common issues. Continue Reading
How can enterprises enable mobility while insulating corporate networks from mobile malware? Per-app VPN tunnels offer secure remote access when combined with other measures. Continue Reading
Problem Solve Mobile malware Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
Fenwick & West LLP's IT services are delivered through a hybrid of on-premises, software-as-a-service and cloud infrastructures. "As we straddle the cloud and on premises, our security problems have just broadened," said CIO Matt Kesner.
The Silicon Valley law firm's experience is typical of the growing number of companies that are running into legacy security obstacles as they move workloads to the cloud. Security technologies designed to protect enterprise applications and data on premises are often ill-suited for cloud infrastructures. We talked to security executives and analysts about what to consider when you're tasked with integrating legacy security systems with cloud services.
Corporate boards must be ready to defend their fiduciary decisions, compliance actions and, perhaps soon, even cybersecurity preparedness. A growing number of companies are seeking cyber-savvy board members, but it's still far from a majority. Should companies add board members with cybersecurity or cyber-risk experience? We look at both sides of the debate.
Western Union rolled out a strategy to help its workforce take advantage of cloud services. The program -- dubbed Western Union Information Security Enablement, or WISE -- involved bringing shadow IT into the light, approving cloud services for official use and adding the necessary controls and policies to secure cloud infrastructures. We catch up with the company's senior manager of information security to find out how it's going.Continue Reading
New mobile malware can affect both jailbroken and non-jailbroken iOS devices. Expert Nick Lewis outlines the threat posed by YiSpecter and how to stop it. Continue Reading
Fragmentation and BYOD user behavior complicate Android device management, but new tools can help IT administrators improve application and data security. Continue Reading