Android

(get it in RSS or Atom)

Smartphone PINs skimmed with microphone and camera

Smartphone PINs cracked with microphone and camera - a game-changer for phone security?

A new program, dubbed PIN Skimmer by its University of Cambridge creators, can correctly guess a high proportion of PINs by utilising the device's camera and microphone.

Adobe, Android and CryptoLocker - 60 Sec Security [VIDEO]

2013-11-09-pet-passwords-250

Which pets make the best/worst passwords?

How many times did Google make the same coding blunder?

Find out this and more in our one-minute wrapup of the week's security lessons!

SSCC 122 - Facebook hoax, Microsoft 0-day, Android hole and Firefox going forward [PODCAST]

sscc-122-175-250

What a coincidence! A Facebook hoax claming that images can infect your computer...and then a Microsoft zero-day that uses images to infect your computer.

Chet and Duck talk you through the latest news...

Anatomy of a file format problem - yet another code verification bypass in Android

kk-kitkat-250

Four months ago, the Android platform was stirred, if not shaken, by a pair of code verification holes.

Turns out there was a third one, now fixed in Android 4.4, better known as Kit Kat.

Paul Ducklin looks at what we can learn from it...

4 free tools to boost your security

try-these-4-250

You've probably heard us saying, "Get more serious about security!"

That, of course, invites the reply, "Where do I start? What should I do?"

So here are 4 free tools to help you on your way...

SSCC 118.99 - How do you define a Potentially Unwanted Application (PUA)?

Google rolls out fix for Android security vulnerability

In the third part of Sophos Security Chet Chat 118, Chet interviews Vanja Svajcer to explain the rise of potentially unwanted applications on Android, what they are and how we might deal with them.

GinMaster, unwanted Android apps and legit apps gone bad

evil-android-thumb

More coverage from the Virus Bulletin 2013 Conference in Berlin, Germany. Today's topics include Android botnets, malware abusing legitimate applications and defining the types of apps we allow on our phones.

SophosLabs prepares for great showing at Virus Bulletin 2013

Who is SophosLabs

Sophos has a larger than normal presense this week at the Virus Bulletin Conference in Berlin, Germany. Research presented includes bot nets, rootkits, Android and even techniques we can use to better protect others.

Advertising in mobile apps - how much is too much?

buyme-250

At this week's Virus Bulletin conference in Berlin, two SophosLabs researchers will present a paper on ads and adware in the mobile ecosystem.

We'd love to put *your* questions and comments to them from the conference floor - so here's your chance to have your say...

Size doesn't matter - at least, not quite as much as smartphone privacy

smartphone-300

A new study finds that privacy is more of a concern for smartphone users than screen size, phone brand, weight, or camera resolution.

Meanwhile, 80% of users won't download apps they don't trust. (Hurray! Let us now nag the other 20%.)

Monday review - the hot 20 stories of the week

dow-250

It's weekly roundup time!

Here's all the great stuff we've written in the past seven days.

How much security would you expect in a $60 light globe?

hue-250

"Honey, why are the lights flashing 'URPWN3D' in Morse code?"

If you spent a cool $60 each on light globes (bulbs) from the Apple store...

...how much security would you expect?

Android randomness, Sniffer dustbins, Unpatch Wednesday, ATM skimming - 60 Sec Security [VIDEO]

2013-08-17-sniffer-bins-250

How does a bug in Android put your Bitcoins at risk? Why did the City of London bin its bins? What was Unpatch Wednesday? What to do with a 3D printer after you've made your own gun?

Find out in 60 seconds!

SSCC 114 - Bitcoins and randomness, OpenX and trust, Email and privacy [PODCAST]

sscc-114-250

News, opinion, advice and research!

Chet and Duck bring you their unique and entertaining combination of all four in their regular quarter-hour podcast.

Monday review - the hot 24 stories of the week

dow-250

It's Monday again, so here's a quick way to get yourself up to date with everything we've written in the last seven days.

Android random number flaw implicated in Bitcoin thefts

bc-android-250

Bitcoin is in the news again.

Seems that a random number problem on the Android platform is letting crooks get away with cryptographic fraud to make off with other people's BTCs...

Infecting iOS, OpenX backdoor, toilet hole, Android malware - 60 Sec Security [VIDEO]

2013-08-10-infecting-ios-250

Are Apple's iPhones really impervious to malware? What do you do if your software is pre-infected with a backdoor? What strength of password is appropriate for a toilet? And what about firmware updates for the Android code verification holes? Find out more in 60 seconds!

Android "Master Key" vulnerability - more malware exploits code verification bypass

andr-250

Researchers at SophosLabs have come across samples of Android malware exploiting the so-called "Master Key" vulnerability.

Paul Ducklin investigates and explains...

Just when you thought it was safe to go back in the water (closet)!

loos-250

So many vulnerabilities are doom-and-gloom that you'd be forgiven for wondering if there are ever any at which you are allowed an uncomplicated chuckle.

The guys at Trustwave found one!

Monday review - the hot 18 stories of the week

Monday review

Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.