By:Zuk Avraham Follow Zuk Avraham (@ihackbanme)Joshua Drake Follow Joshua Drake (@jduck)Nikias Bassen Follow Nikias Bassen (@pimskeks) The last thirty days proven to be yet another exciting time for the mobile security ecosystem. Apple and Google released updates for their respective mobile operating systems that fix several critical issues — including […]
Currently browsing: Mobile Security
Video: Zimperium takes over Nexus 6 using Stagefright
Just how safe is your phone from hackers? Our own zLabs VP of Research Joshua Drake and founder and chairman Zuk Avraham sat down with Crime Watch Daily’s Ana Garcia to show viewers just how dangerous hackers abusing the Stagefright vulnerabilities can be. One of the most common ways for hackers […]
zYiRemoval – Free tool to remove YiSpecter
By:Nikias Bassen Follow Nikias Bassen (@pimskeks) An enterprise security vendor, Palo Alto Networks, followed up on a threat discovered by Cheetah Mobile and Qihoo360, and identified a malware spreading through social media and other channels. This malware, named YiSpecter, is abusing enterprise code signing to trick the user into installing […]
Zimperium zLabs is Raising the Volume: New Vulnerability Processing MP3/MP4 Media.
By:Zuk Avraham Follow Zuk Avraham (@ihackbanme)Joshua Drake Follow Joshua Drake (@jduck)Nikias Bassen Follow Nikias Bassen (@pimskeks) Following our discovery of vulnerabilities in the Stagefright library in April, Zimperium Mobile Threat Protection, zLabs VP of Research Joshua J. Drake continued researching media processing in Android. His continued research, which focused on remote […]
Zimperium Deepens Integration with AirWatch to Stop Mobile Cyberattacks
We are excited to share that earlier today AirWatch announced our charter membership in their Mobile Security Partner Alliance Program. That announcement is about providing AirWatch customers with solutions to ensure the best security and visibility to mitigate the growing mobile threat landscape. While we already had a console-to-console integration with […]
The Latest on Stagefright: CVE-2015-1538 Exploit is Now Available for Testing Purposes
More than a month has passed since Zimperium first broke the news of zLabs’ VP of Platform Research and Exploitation Joshua J. Drake’s discovery of multiple critical vulnerabilities in Android’s media library – libstagefright. In that time frame, the number and importance of the events that have unfolded is nothing […]
Stagefright wakes up the mobile eco-system
Not everyday you get to wake up an entire eco-system ! Stagefright discovery by Joshua Drake (@jduck) at Zimperium – Mobile Threat Protection. At the time of writing this blog, ZHA has more than 25 members, comprising top 3 Android smartphone vendors, and 5 out of top 10 mobile carriers (by revenue) […]
Stagefright: Vulnerability Details, Stagefright Detector tool released
The Stagefright vulnerability has been one of the hottest topics of discussion in the security industry since it was announced. In order to provide a detailed insight into the vulnerability and ease of exploitation, zLabs VP of Platform Research and Exploitation, Joshua Drake (@jduck) prepared the video below that demonstrates the […]
ZHA – Accelerating roll-out of Security Patches
By:Zuk Avraham Follow Zuk Avraham (@ihackbanme)Joshua Drake Follow Joshua Drake (@jduck)Yaniv Karta Follow Yaniv Karta (@shokoluv) Reflecting on our collective experiences in the Android ecosystem, especially recent events around Stagefright, we were reminded of several deficiencies in the way that Android security update ecosystem works. To help address these issues, […]
Protecting from Hacking Team’s Mobile APT
While the world was going through the emails and exploits that Hacking Team’s leak revealed, we tested our mobile threat protection solution with one of the most advanced attack mechanisms. The result? Zimperium customers are safe from Hacking Team’s attacks, without any engine update! Hacking Team used advanced mobile APT […]
Mobile Security Updates
Receive Zimperium proprietary research notes and vulnerability bulletins in your inbox