Blackberry refreshes its UEM suite, focuses on zero-trust access

Credit to Author: Lucas Mearian| Date: Thu, 21 Nov 2019 10:17:00 -0800

Read more

The 5 true takeaways from Android's camera vulnerability circus

Credit to Author: JR Raphael| Date: Thu, 21 Nov 2019 09:21:00 -0800

I don’t know if you’ve read much news this week, but it seems the sky is falling and we’re all terribly doomed.

No, I’m not talking about that news — as usual, that’s another column for another publication — but rather the news that a security flaw in some Android camera apps could turn our phones into privacy-plundering spy portals and bring an end to human life as we know it.

I mean, have you seen some of these headlines?!

  • “Hundreds of millions of Android phone cameras can be hijacked by spyware”
  • “Android flaw lets rogue apps take photos, record video even if your phone is locked”
  • “An Android flaw lets apps secretly access people’s cameras and upload the videos to an external server”

Holy hibiscus, Henry! Even I’m trembling from all of that, and I know it’s a bunch of misguided, sensationalized hooey.

To read this article in full, please click here

Read more

Android camera bug could have turned phones against their users

Credit to Author: Danny Bradbury| Date: Thu, 21 Nov 2019 14:56:03 +0000

Google has patched a bug in the Android camera app that allowed other applications to bypass the strict controls on camera and audio access.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/q4VNRcGzd0I” height=”1″ width=”1″ alt=””/>

Read more

Facebook's iOS 'bug' secretly filmed users. IT, take note.

Credit to Author: Evan Schuman| Date: Wed, 20 Nov 2019 09:41:00 -0800

News reports last week — subsequently confirmed by a Facebook executive’s tweet — that the Facebook iOS app was videotaping users without notice should serve as a critical heads up to enterprise IT and security execs that mobile devices are every bit as risky as they feared. And a very different bug, planted by cyberthieves, presents even more frightening camera-spying issues with Android.

On the iOS issue, the confirmation tweet from Guy Rosen, who is Facebook’s vice president of Integrity (go ahead and insert whatever joke you want about Facebook having a vice president of integrity; for me, it’s way too easy a shot), said, “We recently discovered our iOS app incorrectly launched in landscape. In fixing that last week in v246, we inadvertently introduced a bug where the app partially navigates to the camera screen when a photo is tapped. We have no evidence of photos/videos uploaded due to this.”

To read this article in full, please click here

Read more

Brand new Android smartphones shipped with 146 security flaws

Credit to Author: John E Dunn| Date: Tue, 19 Nov 2019 13:16:58 +0000

If you think brand new, just-out-of-the-box Android smartphones are immune from security vulnerabilities – think again.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/9O4sLIwsqWk” height=”1″ width=”1″ alt=””/>

Read more

Mobile security perceptions don't approach reality. And that's a problem.

Credit to Author: Evan Schuman| Date: Mon, 18 Nov 2019 07:44:00 -0800

In general, security vendors love consumer surveys where consumers say that they would never, ever, ever do business with a retailer or a bank with poor security practices. But consumers have historically been terrible predictors of their own behavior, and they also tend to tell retailers and banks what they want to hear, rather than the truth.

And the truth, based on the public financial filings of plenty of companies that have suffered public data breaches, is that consumers — partially thanks to zero liability programs from the payment card companies — tend to not change retailers or banks when such data breaches happen. Why? Quite a few reasons. First, zero liability sees to it that they don’t lose any money (it actually limits losses to $50, but almost no business enforces that, and they tend to simply eat all of the consumer losses). If consumers lost large amounts of money from breached retailers or banks, yes, they’d flee, but that doesn’t happen.

To read this article in full, please click here

Read more

Two men busted for hijacking victims’ phones and email accounts

Credit to Author: Lisa Vaas| Date: Mon, 18 Nov 2019 11:17:51 +0000

Prosecutors allege that Meiggs and Harrington took over their targets’ mobile phone and email accounts via SIM-swapping.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/J1Y9CgBcaSw” height=”1″ width=”1″ alt=””/>

Read more

What you need to know about new data-security rules for business travel

Credit to Author: Mike Elgan| Date: Fri, 15 Nov 2019 07:39:00 -0800

From U.S. Customs agents to cybercriminals, everyone wants to copy the data on your phone and laptop. Here’s how to protect your rights and also avoid industrial espionage.

Read more

Brave 1.0 launches, extends ad-watching payouts to iOS

Credit to Author: Lisa Vaas| Date: Fri, 15 Nov 2019 11:36:08 +0000

It’s showtime: Finally out of beta comes the browser that promises privacy, anonymity and cryptocurrency in exchange for your eyeballs.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/oVgTjmFNurY” height=”1″ width=”1″ alt=””/>

Read more

Apple fires employee after he texts customer’s pic to his own phone

Credit to Author: Lisa Vaas| Date: Fri, 15 Nov 2019 10:29:42 +0000

An “EXTREMELY PERSONAL”, year-old pic, the woman said, that he had to scroll through 5,000 photos to get to. Police are investigating.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/pJ0UYPjeVG8″ height=”1″ width=”1″ alt=””/>

Read more