Mobile Security Weekly – Three New But Classic iOS and Android Attacks

 
This week’s issue includes three classic mobile security issues that shine a spotlight on iOS and Android attacks. Far from the type of news enterprises want to see, these are new ways mobile device users can be attacked and/or robbed. This new vulnerability, new SMS worm and large-scale social engineering campaign aren’t the kinds of attacks that are unheard of, but they prove attackers simply aren’t slowing down. Samsung’s Find My Phone Feature Opens Another Door to Attackers A new zero-day flaw that allows hackers to lock a large range of Samsung device by taking advantage of the lost device feature has just been published. Worryingly, it already ...

Mobile Security Weekly – iOS Jailbroken, Knox Cracked, Android Exposed (Again)

 
This week’s coverage includes a wide range of security issues, from security solutions that aren’t good enough to another new way for attackers to target devices. Just over a month after the release of iOS 8, we’ve also got the first jailbreak, which just goes to show that this “un-jailbreak-able” version of iOS really isn’t. A Brand New Jailbreak for iOS 8 is Available A new jailbreak for iOS 8 was released Wednesday, almost out of the blue, by Pangu, the same team that released the most recent jailbreak for iOS 7. While the jailbreak is not especially useful to the average user right now (it doesn’t support the alternative app market, Cydia -- ...

Pangu Pushes New Jailbreak for iOS 8

 
Today, a jailbreak for iOS 8 and 8.1 was released by Pangu, the same team that released a jailbreak for iOS 7.1 shortly after its release earlier this year. Pangu should concern us - the security community, enterprises, and consumers alike - because it represents a major technology leap, ultimately removing the barrier for attackers to create sophisticated mobile-targeted attacks on the latest release of iOS. If you are a Lacoon customer, you are already protected against the threat of jailbroken devices and detection of apps that haven’t been validated by Apple’s app verification program. (For more information, please email ...

Don’t Pet This POODLE: New SSL 3.0 Bug

 
What is POODLE and how does it affect organizations?   On Tuesday, October 14th, Google researchers, Bodo Möller, Thai Duong and Krzysztof Kotowicz discovered a subtle but significant security weakness in version 3.0 of the SSL protocol. This bug, CVE-2014-3566, is being referred to as POODLE – Padding Oracle On Downgraded Legacy Encryption and is said to have a severity level of Medium. Although this particular vulnerable version of SSL is approximately 15 years old, it is still widely used and supported on most browsers. As a result, this vulnerability has the potential of affecting a significant number of individuals and organizations. Transport Layer Security (TLS) and its ...

Mobile Security Weekly – Android Threats On The Rise

 
After focusing heavily on iOS over the past few weeks, this week’s edition brings us back to Android. By far the most popular mobile platform worldwide, it’s unique ecosystem is key to many of it’s advantages alongside many of it’s shortcomings from a security perspective. The following news items from the past week highlight exactly these issues. Study Reveals Large Increase in Android Threats, Especially Mobile Payments A new joint report from Kaspersky Lab and INTERPOL, based on data from over 5 million Android smartphones and tablets between 2013-2014, shows a substantial increase in the number, variety and severity of ...

Bug in the Bug Tracker

 
On September 29th, Check Point’s Malware and Vulnerability Research Group uncovered a critical privilege escalation vulnerability in the popular bug-tracking platform called Bugzilla. According to the CVE security vulnerability database (cvedetails.com), this is the first privilege escalation bug uncovered in the Bugzilla project since 2002. (See also: Bugzilla Zero-Day Exposes Zero-Day Bugs by Brian Krebs) Check Point’s security researchers have informed the Mozilla Foundation and the team leading the Bugzilla project about this particular vulnerability. Mozilla and Bugzilla have recognized the critical nature of this vulnerability and have assigned the following CVE identifier for ...

Mobile Security Weekly – Lacoon Discovers the Xsser mRAT

 
This week’s global mobile security news has been dominated by a discovery made here at Laccon. Several days ago, we released our findings on what has now become front page news - the Xsser mRAT.  The Chinese government seems to be targeting protesters in Hong Kong with advanced mRATs (Mobile Remote Access Trojans) for both iOS and Android devices. Researchers at Lacoon discovered a sophisticated Cross-Platform attack that is targeting iOS and Android phones that belong to the protesters in Hong Kong in order to extract their private data and perform several forms of surveillance on them. This campaign is the first example we’ve seen ...