Virus Shield, a security app at the top of the Google Play store, was recently discovered to be entirely fake. This app claimed to, “prevent harmful apps from being installed on your device.” According to the Android Police, “it’s a complete and total scam.” The developer’s name, Deviant Solutions, was a pretty good clue that the app was a fraud. However, over 10,000 users paid $3.99 to download Virus Shield for the privilege of receiving absolutely no assistance.... Read More »
Malware has recently been portrayed as the principal villain in the mobile app security narrative. Although a contributor, malware is not the primary threat to user privacy or enterprise security on mobile devices. Rather the risky behavior that is present within the apps and knowingly (or unknowingly) downloaded is a far greater mobile threat. One of the most commonly overlooked yet prevalent of these risky behaviors is data mining. ... Read More »
Recently Wal-Mart and Walgreens have both been noted to have security vulnerabilities connected to their mobile applications. Following recent revelations about the insufficient security of mobile apps from other major corporations, such as Target, Neiman Marcus, and Starbucks, it is clear that big company names are still struggling to iron out flaws in their mobile apps. We recently put the Wal-Mart and Walgreens apps through our mobile app reputation analysis via the Appthority Service and found their ratings to be the following... Read More »
We here at Appthority want to send out a big thank you to all those who stopped by our Risky Business party (co-hosted by MobileIron) or booth last week during RSA. We had a busy and productive conference week filled with a lot of great conversations and interesting sessions and keynotes. There was a lot of interest in our new Winter 2014 App Reputation Report with a breakdown on the security and privacy behaviors behind the top 400 iOS and Android apps to assess the state of mobile app security. As BYOD continues to get attention, we also heard from a lot of journalists interested in the impact of mobile app risk on enterprises and consumers. Over 100 articles came out covering the findings from our report.... Read More »
If you rely on an iPhone, iPod Touch or iPad, now is a great time to install iOS 7.0.6. Without that update, you could be enabling hackers to intercept what should be secure communications between your device and SSL protected websites – we’re talking about email and login credentials.
Mac computers are also impacted and Apple is expected to release a patch for OSX in the near future.... Read More »
Just last week, the National Cyber Security Alliance promoted its internationally recognized annual holiday, Data Privacy Day. The theme of Data Privacy Day, “Respecting Privacy, Safeguarding Data, and Enabling Trust,” came just on the heels of new revelations from the N.S.A. around how they target mobile.
According to the New York Times, the National Security Agency let it slip that they use mobile apps as a method to access personal information. These “leaky apps” such as the popular gaming app Angry Birds give away things such as smartphone identification codes and pinpointed locations throughout the day.... Read More »
It was recently discovered that the Starbucks app was storing usernames, email addresses and password in clear text (unencrypted), making this information identifiable to anyone with access to the app-holder’s phone and a computer. By connecting the phone to a computer, credential information and a list of geolocation tracking points of the account were readily accessible. The app used the convenient “save credentials” feature that allowed users to save their information. As a result, users wouldn’t have to re-enter their username and password with every use. This revelation sent shockwaves through the consumer community.... Read More »
In case you missed it, Apple has set a deadline for app developers to have their apps optimized for iOS7 by February 1, 2014. This means that after the deadline, apps or updates to existing apps will only be accepted for review by Apple if they are built with the latest version of Xcode5.
Apple is eager for developers to adapt to iOS7 so users can take full advantage of the iOS7 experience. As a way to tell developers that they won’t be limiting their user pool, Apple has posted iOS7 adoption rate figures on their developer website. Current rate? It stands at 79 percent.... Read More »
Appthority has had several interesting discussions with a number of the global automotive companies, which have the foresight to think about app security, These companies are taking time to analyze (not for just mobile malware, mobile viruses, etc.) and secure apps but looking at mobile apps before they are allowed to enter the networked car ecosystem. Having conducted thorough security analysis on over two million mobile apps for its enterprise customers, Android and iOS alike, Appthority looks forward to the days of protecting (through App Risk Management, mobile malware detection, etc.) the connected vehicles of the future.... Read More »
Happy New Year! We here at Appthority have put together a few of our own predictions. We gave you a teaser in our blog post on financial security predictions. As promised, here are some others.
1. Tensions will rise
As you may have read in Larry Seltzer’s article in ZDNet, Appthority’s chief architect and co-founder, Kevin Watkins, explains his prediction that tensions will increase between IT departments and end users as businesses move toward adopting technologies that will approve apps as they are downloaded.... Read More »