Android

(get it in RSS or Atom)

GinMaster, unwanted Android apps and legit apps gone bad

evil-android-thumb

More coverage from the Virus Bulletin 2013 Conference in Berlin, Germany. Today's topics include Android botnets, malware abusing legitimate applications and defining the types of apps we allow on our phones.

SophosLabs prepares for great showing at Virus Bulletin 2013

Who is SophosLabs

Sophos has a larger than normal presense this week at the Virus Bulletin Conference in Berlin, Germany. Research presented includes bot nets, rootkits, Android and even techniques we can use to better protect others.

Advertising in mobile apps - how much is too much?

buyme-250

At this week's Virus Bulletin conference in Berlin, two SophosLabs researchers will present a paper on ads and adware in the mobile ecosystem.

We'd love to put *your* questions and comments to them from the conference floor - so here's your chance to have your say...

Size doesn't matter - at least, not quite as much as smartphone privacy

smartphone-300

A new study finds that privacy is more of a concern for smartphone users than screen size, phone brand, weight, or camera resolution.

Meanwhile, 80% of users won't download apps they don't trust. (Hurray! Let us now nag the other 20%.)

Monday review - the hot 20 stories of the week

dow-250

It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

How much security would you expect in a $60 light globe?

hue-250

"Honey, why are the lights flashing 'URPWN3D' in Morse code?"

If you spent a cool $60 each on light globes (bulbs) from the Apple store...

...how much security would you expect?

Android randomness, Sniffer dustbins, Unpatch Wednesday, ATM skimming - 60 Sec Security [VIDEO]

2013-08-17-sniffer-bins-250

How does a bug in Android put your Bitcoins at risk? Why did the City of London bin its bins? What was Unpatch Wednesday? What to do with a 3D printer after you've made your own gun?

Find out in 60 seconds!

SSCC 114 - Bitcoins and randomness, OpenX and trust, Email and privacy [PODCAST]

sscc-114-250

News, opinion, advice and research!

Chet and Duck bring you their unique and entertaining combination of all four in their regular quarter-hour podcast.

Monday review - the hot 24 stories of the week

dow-250

It's Monday again, so here's a quick way to get yourself up to date with everything we've written in the last seven days.

Android random number flaw implicated in Bitcoin thefts

bc-android-250

Bitcoin is in the news again.

Seems that a random number problem on the Android platform is letting crooks get away with cryptographic fraud to make off with other people's BTCs...

Infecting iOS, OpenX backdoor, toilet hole, Android malware - 60 Sec Security [VIDEO]

2013-08-10-infecting-ios-250

Are Apple's iPhones really impervious to malware? What do you do if your software is pre-infected with a backdoor? What strength of password is appropriate for a toilet? And what about firmware updates for the Android code verification holes? Find out more in 60 seconds!

Android "Master Key" vulnerability - more malware exploits code verification bypass

andr-250

Researchers at SophosLabs have come across samples of Android malware exploiting the so-called "Master Key" vulnerability.

Paul Ducklin investigates and explains...

Just when you thought it was safe to go back in the water (closet)!

loos-250

So many vulnerabilities are doom-and-gloom that you'd be forgiven for wondering if there are ever any at which you are allowed an uncomplicated chuckle.

The guys at Trustwave found one!

Monday review - the hot 18 stories of the week

Monday review

Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.

Android holed again, JAY Z and "Magna Carta", Tumblr and HTTPS - 60 Sec Security [VIDEO]

2013-07-20-jayz-250

Another Android code verification flaw revealed, and JAY Z takes the concept of "Magna Carta" to a whole new level.

Take a minute to look at this week's 60 Second Security video to learn more!

SSCC 113 - Another Android hole, Tumblr forgets encryption, Nintendo under attack [PODCAST]

image-113-250

News, opinion, advice and research: Chet and Duck bring you their unique and entertaining combination of all four in their regular quarter-hour podcast.

Why not give it a quick listen?

Would you tell Google your Wi-Fi password? You probably already did...

wifi-red-250

Are you prepared to accept a digital equivalent of locking your keys in the car forever?

Or would you prefer to have what amounts to a backdoor to your own, or worse still, to other people's, personal information?

Anatomy of another Android hole - Chinese researchers claim new code verification bypass

bugette-250

Hot on the heels of the so-called "master key" bug in Android comes what Chinese Android researchers are calling "a similar vulnerability."

They've definitely found a bug, and an another embarrassing one for Google's coders, too...

Monday review - the hot 15 stories of the week

Monday review

Missed anything last week? Catch up with everything we talked about with this handy weekly roundup.

Android security fail, Cryptocat tartan, Nintendo crack - 60 Sec Security [VIDEO]

2013-07-13-googlehole-250

Are cryptographic holes the new buffer overflows?

Take a look at this week's 60 Second Security video and let us know what you think!