Last week, a new strain of trojan adware was discovered, bearing automatic device-rooting capabilities that make it almost impossible to remove from affected Android devices. This malware, dubbed Shuanet is another example of increasing sophistication in mobile threats. Shuanet is the third family in a trilogy of recently discovered malicious […]
All posts tagged: Android
Zimperium zLabs is Raising the Volume: New Vulnerability Processing MP3/MP4 Media.
By:Zuk Avraham Follow Zuk Avraham (@ihackbanme)Joshua Drake Follow Joshua Drake (@jduck)Nikias Bassen Follow Nikias Bassen (@pimskeks) Following our discovery of vulnerabilities in the Stagefright library in April, Zimperium Mobile Threat Protection, zLabs VP of Research Joshua J. Drake continued researching media processing in Android. His continued research, which focused on remote […]
ZHA – Accelerating roll-out of Security Patches
By:Zuk Avraham Follow Zuk Avraham (@ihackbanme)Joshua Drake Follow Joshua Drake (@jduck)Yaniv Karta Follow Yaniv Karta (@shokoluv) Reflecting on our collective experiences in the Android ecosystem, especially recent events around Stagefright, we were reminded of several deficiencies in the way that Android security update ecosystem works. To help address these issues, […]
How to Protect from StageFright Vulnerability
Earlier this week, Zimperium (@ZIMPERIUM), the leader in mobile threat protection, unveiled a major vulnerability in Android – Stagefright. Joshua Drake (@jduck), VP of Platform Research and Exploitation and a senior member of Zimperium zLabs, proactively studied the code. According to a few firms, other people have identified vulnerabilities in […]
Cutting Through The Weekly Mobile Security Noise: The Rise of Android Threats
The rise of Android-developed malware is creating a serious problem for organizations. Research firm Strategy Analytics found that “81.3 percent of smartphones sold in the third quarter of 2013 were powered by Android” and that number is continuing to soar. The increasing popularity of these devices is attracting cyber criminals […]
What Verizon Missed in the Latest Threat Report
By: Zuk Avraham, Joshua Drake, Yaniv Karta, Jimmy Shah (To download the detailed report, click here) Recently, Verizon published a report that says that malware on mobile is not an issue. We strongly suggest Verizon and other enterprises not underestimate the scale of one percent. The sheer number of mobile […]
Zimperium Raises $12M in Series B Funding Led by Telstra
We are excited to announce that Zimperium raised $12M in Series B Funding. This is a major milestone for Zimperium and is a testament to the quality of the Z-Team, the products we develop and the customers we have in place successfully using Zimperium’s Mobile Threat Defense. 2014 was a […]
Telegram App Store Secret-Chat Messages in Plain-Text Database
EDIT: The following post * was not on a rooted or jailbroken device *. In order to access the plain-text secret-chat database containing the messages, we used our implementation of CVE-2014-3153. The claims that the device is rooted / jailbroken are incorrect and misleading. I will start by quoting CryptoFail […]
Cutting through the Weekly Mobile Security Noise: The Kaspersky Lab Disclosure
This week we’ve been monitoring reactions to a report released on Monday by Kaspersky, the Moscow-based internet security company. The firm claims it has uncovered spying software inside the hard drives of several institutions across thirty different countries, making it “the most sophisticated attack the world has seen to date.” […]
Zimperium Takes on Mobile World Congress 2015
Next month Zimperium has the honor of presenting on the evolution of the mobile threat landscape at Mobile World Congress, March 2-5, in Barcelona, Spain. After a record 2014, we are excited to showcase our Mobile Threat Defense system for iOS and Android devices to event attendees! Be sure to […]