Friday, 19 June 2015

Apps may be your smartphone’s biggest security hole

● security company NowSecure reports that the Swift keyboard on all Samsung devices has a security hole &, as owners will be aware, it can’t be uninstalled, or replaced by installing another keyboard. Fortunately, Samsung has promised a replacement “in the next few days”

● researchers at Indiana University have found that the iOS app store is not the iron-clad barrier to malware apps it was widely thought to be

● a team drawing researchers from the Fraunhofer Institute for Secure Information Technology & the Darmstadt University of Technology in Germany, found that faulty security protocols in apps available for all phones, could place personal data at risk

http://www.cnet.com/news/your-mobile-app-has-serious-security-flaws/

http://www.digitaltrends.com/mobile/keyborad-security-flaw-samsung-phones-version-1434560683/

http://www.forbes.com/sites/thomasbrewster/2015/06/17/big-flaws-in-apple-oses/ / learned your smartphone apps exploited hackers three separate research groups app security flaws Apple Samsung devices cyberintruders cyber intruders take control phone camera microphone GPS stealing personal information listening phone calls good news attacks aimed at specific phones attackers unlikely to target really bad news German researchers flaws affect every phone vulnerability flaw Swift keyboard preinstalled Samsung devices security company NowSecure keyboard can't be uninstalled replace replacing another keyboard app fix problem researchers Indiana University iOS apps containing malware easily get past Apple's scrutiny onto App Store Samsung iPhone team researchers Fraunhofer Institute for Secure Information Technology Darmstadt University of Technology Germany apps available for all phones use faulty security protocols compromise personal data Samsung repair keyboard problem German research Colombian software developer reproduce many major apps securing usernames passwords research found 56 million unsecured data sets consumers personal information Fraunhofer Institute email addresses passwords health records sensitive information app users easily stolen manipulated Oliver Kuch Ryan Disraeli fraud services security company TeleSign attack attacks random attacks targeted attacks hacker hacked hacking hack contractor access superclassified classified government documents attack smartphone consumers hacking photos Ryan Disraeli fraud services TeleSign /