Currently browsing: Mobile Security

Browser-based CVE-2015-3864 Metasploit Module Now Available for Testing

By:Zuk Avraham Follow Zuk Avraham (@ihackbanme)Joshua Drake Follow Joshua Drake (@jduck) Last year, we disclosed a series of critical vulnerabilities within Android’s multimedia processing code — libstagefright. We promised to release the exploit for testing purposes and quickly published our exploit for CVE-2015-1538 targeting the Galaxy Nexus running Android 4.0.4. […]

Read more

Analysis of multiple vulnerabilities in different open source BTS products

Background By:Simone Margaritelli c Follow Simone Margaritelli (@evilsocket)        Zimperium zLabs Follow Zimperium zLabs (@zLabsProeject) During the last weeks we’ve been investigating multiple aspects of GSM security such as protocol vulnerabilities as well as source auditing the world’s most common open source software products that run GSM networks. In this post we’ll […]

Read more

What is Quadrooter?

‘Quadrooter’ is a group of four vulnerabilities affecting  specific Android devices leveraging the Qualcomm chipset and associated driver code. These four vulnerabilities are a small part of the 36 vulnerabilities reported from the same class of bug (privilege escalation) for the same vendor (Qualcomm) that were fixed as part of […]

Read more

Pokémon Go: the Security Cost of Catching ’em All

For the past two weeks, full-grown adults, college students and children have all been roaming around the country in search of Pokémon (gotta catch ’em all, right?). This augmented reality mobile phenomenon has removed people from their home and encouraged them to explore their neighborhoods, but catching them all has […]

Read more

Zimperium Protects SOLARIN by Sirin Labs

By:Zuk Avraham Follow Zuk Avraham (@ihackbanme) It’s been a whirlwind month for myself and the rest of the Zimperium team as we’ve launched new partnerships and closed Series C financing. Last week’s SOLARIN launch event was a highlight for me in particular. The launch took place at SIRIN LAB’s beautiful […]

Read more

Zimperium Partners with SmarTone to Offer ST Protect Service

We’re proud to announce that we’ve partnered with SmarTone, a leading wireless communications carrier based in Hong Kong. SmarTone is working with Zimperium to give their customers world-class mobile protection with ST Protect anti-cyberattack software. Delivered via a single app service, Android and iPhone users alike are safeguarded against Wi-Fi […]

Read more

Mobile Banking Apps Are a Valuable Asset

Mobile banking is a killer mobile app. We can now easily move money from one account to another to pay bills, credit vendors and send cash to friends and family. In previous years these transactions required tellers, checks and nightly batch runs in the bank’s back office. Now with the […]

Read more

Privacy vs. Security

If you think about it, practically every type of security product in the market provides security through surveillance. Surveillance is the act of keeping a close watch over someone or something in order to prevent or detect. In law enforcement it’s looking for crime but in an IT sense it’s [...]
Read more

Zimperium Applauds Google’s Rapid Response to Unpatched Kernel Exploit

On March 15th, Zimperium’s zIPS Mobile Threat Protection solution identified a zero-day mobile attack and its zLabs research team immediately reported the exploit to the Android Security Team. The reported attack is delivered via a publicly-available rooting application, KingRoot, using an unpatched local elevation of privilege vulnerability in the kernel reported […]

Read more

Get started with Zimperium today