Security News
Incognia announced the launch of its location-based behavioral biometrics solution developed to combat rising rates of mobile fraud. Incognia location behavioral biometrics provides a new frictionless weapon for enhanced fraud detection and prevention.
Mobile phishing is on the rise according to a new study from cybersecurity company Lookout, which found a 37% increase in enterprise mobile phishing in the first quarter of 2020. According to data collected by Lookout researchers, unmitigated mobile phishing threats could cost organizations with 10,000 mobile devices as much as $35 million per incident, and up to $150 million for organizations with 50,000 mobile devices.
MobileIron has released a report that paints a troubling picture of tension between C-suite executives and IT decision makers when it comes to mobile device security. The findings, the report states, suggest "That C-suite executives often bypass their organization's mobile security protocols, putting businesses around the world at significant risk of a data breach and highlighting the need for newer technologies to allow employees to be secure and productive at the same time."
Samsung on Tuesday unveiled a new security solution - composed of a secure element chip and security software - designed to enhance data protection on mobile devices. Samsung has described it as a "Standalone turnkey security solution" that provides protection for the booting process, isolated storage, mobile payments and other applications.
A full 70 percent of applications being used today have at least one security flaw stemming from the use of an open-source library. Most JavaScript applications contain hundreds of open-source libraries - some have more than 1,000 different libraries.
If you use the Nextcloud mobile app, you'll want to password protect it to ensure you don't leave your sensitive data open for anyone to see. Given that I have the mobile app on my Google Pixel 4 linked to my on-site Nextcloud server, I thought it would behoove me to give that app an added layer of protection.
According to the Verizon Mobile Security Index 2020, 43% of organizations said they knowingly cut corners on mobile security in 2019 to "Get the job done." And that was before the global pandemic. This will be a struggle for many organizations unless they have mobile security professionals embedded in their development teams, and as I mentioned earlier, mobile security professionals are in short supply.
Zimperium, the global leader in mobile security, announced a strategic partnership with ZecOps, the leading agentless automated Digital Forensics and Incident Response provider, enhancing Zimperium's offering with ZecOps' advanced mobile forensics capabilities. "Through our partnership with ZecOps, Zimperium is now the only company that can provide companies and government agencies with on-device, machine learning-based threat detection and automated digital-rich forensics for incident response efforts."
PDI, a global provider of enterprise resource planning, fuel pricing, supply chain logistics, and loyalty solutions for the convenience retail and petroleum wholesale industries, announced it is adding a new employee self-service mobile app to its PDI Enterprise Workforce software. PDI Employee Self-Service provides c-store employees real-time access to accurate shift coverage, schedule transparency and pay stub information.
Any developer currently using image importers or other image handling libraries should read this document to see how to use the Image I/O framework instead. In other words, instead of laboriously adding support for dozens of different image formats to your app by writing code for each new filetype one-by-one, you can just use ImageIO functions and let the operating system take care of figuring out what image type it is, whether it's supported, and how to read it in. You don't need to worry, or even care, whether it's JPEG, GIF, PNG, BMP, TIFF or even a file format you've never heard off such as KTX. So the drawcard here for a security researcher is the juxtaposition of the word fuzzing, which means going all-out to find weirdly-corrupted files that reveal bugs in the underlying code, and the word ImageIO, which refers to the core code that gets triggered pretty much any time any iPhone app encounters an image file.