EDIT: The following post * was not on a rooted or jailbroken device *. In order to access the plain-text secret-chat database containing the messages, we used our implementation of CVE-2014-3153. The claims that the device is rooted / jailbroken are incorrect and misleading. I will start by quoting CryptoFail […]
This week we’ve been monitoring reactions to a report released on Monday by Kaspersky, the Moscow-based internet security company. The firm claims it has uncovered spying software inside the hard drives of several institutions across thirty different countries, making it “the most sophisticated attack the world has seen to date.” […]
Next month Zimperium has the honor of presenting on the evolution of the mobile threat landscape at Mobile World Congress, March 2-5, in Barcelona, Spain. After a record 2014, we are excited to showcase our Mobile Threat Defense system for iOS and Android devices to event attendees! Be sure to […]
This week we saw an attempt from the federal government to put a little more wood behind its arrow in pursuit of effective ways to monitor and combat cyber security threats. While the issue has clearly become a priority for the Obama administration – there does seem to be some […]
BYOD policies enable economies of scale but also introduce vulnerabilities to the enterprise. Many employees unknowingly bring malicious apps to work compromising identities and enabling conduits for spies. But what is the effect of BYOD on enterprise security? What are the best-practice BYOD security policies for organizations looking to embrace […]
This week in cyber security we have seen that in the face of attacks from seemingly every angle the best way to fight back and move forward may be as a united front. While the concept might not seem far-fetched considering that it only takes one weak link (perhaps a […]
Millions of Android users have been impacted recently by malware masquerading as a card game called Durak, an IQ test and a history app. The discovery was made by Avast security researcher, Flip Chytry. The malware contains fake ads that pop-up whenever an unsuspecting user unlocks their device. The ads […]
In the world of cyber security there is no denying that we are only as strong as our weakest link. The main issue however is trying to predict which link is most likely to make a mistake and leave an organization vulnerable to a potential security breach. This week we […]
As millions watched the State of the Union address on Tuesday night, I know many of us in the cyber industry were interested to see if, and how, cybersecurity would be addressed. The subject has finally hit the mainstream media, movies, magazines and now the national stage! This is a […]
This week the nation watched as the president of the United States of America attempted to touch on the nation’s ever increasing cyber security threat. While it was encouraging to see an issue that has long been kept somewhat out of site from the American public finally hit the mainstream […]
Receive Zimperium proprietary research notes and vulnerability bulletins in your inbox