15
Sun, Sep

Security

  • SRD Wireless has built what it has described as the first secure messaging app that is resistant to attacks from quantum computing.

  • Silent Circle has "substantially rewritten" its iOS messaging app, offering the ability to send secure messages to those who do not use it.

  • More than 99 percent of new mobile threats in the first three months of 2014 targeted the Android ecosystem, a new survey has revealed, with the UK experiencing the most attacks.

  • Digital security software company Gemalto and French telecom provider SFR have joined forces to provide a Cloud-based authentication solution for businesses.

  • The OpenSSL Project has boosted its funding by fivefold following a donation by Nokia Solutions and Networks to help stop the recurrence of bugs such as Heartbleed.

  • Revelations about NSA hacking, the increasingly sophisticated level of threats to smartphones and the growing number of people using their own devices at work has led the mobile device security market to grow by 40 percent to €937 million, according to new research. 

  • HTC is working on updating its security settings after new research found a number of its smartphones are at risk from the Heartbleed security flaw.

  • IBM has patented an encrypted cloud security product that allows app developers to securely send and receive notifications from mobile devices.

  • UK operators EE, O2, Vodafone and Three have deployed the GSMA's Spam Reporting Service to deal with spam messages and threats.

  • Rohde & Schwarz has completed its takeover of firewall producer Adyton Systems as it looks to boost its presence in the network security market. 

  • A SIM-based authentication service from Orange and SAP’s beefed-up product to protect mobile messaging were among the big announcements in the security space at last week's Mobile World Congress.

    Mobile Connect is Orange's new method of letting consumers log into any digital service, regardless of the device or the connection used, using a personal code or click-validation process. 

  • Operators are stepping up spending on security gateway solutions designed to combat SMS/MMS spam and threats, according to new research.

    For the full year 2013, the global SMS/MMS security gateway market is projected to reach €51 million – a 70 percent increase over 2012 – Infonetics Research revealed.

  • Deutsche Telekom has deployed new technology to make voice communications on its mobile networks more secure. 
     
    The new the A5/3 encryption standard, which has been installed at around 30,000 base stations, will replace the A5/1, which was cracked according to the Germany-based operator.

  • Eighty percent of smartphones will remain unprotected throughout 2013 despite growing consumer awareness of mobile security products, according to a new survey.
     
    The Juniper Research report, Mobile Security: BYOD, mCommerce, Consumer & Enterprise 2013-2018, found that just 325 million mobile devices have security software installed currently.

  • Deutsche Telekom has been working with Samsung to develop a high-security smartphone based on the Samsung Galaxy S3, featuring the world’s first secure mobile OS kernel that is able to protect confidential documents.

    DT’s SiMKo 3, known as the “Merkel phone” after the German Chancellor, incorporates the L4 high-security microkernel and has just passed thorough testing by the German Federal Office for Information Security (BSI).

  • By Mary-Ann Russon

    Researchers have discovered a new vulnerability in the Google Android mobile operating system that could affect every single Android smartphone that has been released since Android 1.6 “Donut” debuted in 2009, i.e. 900 million Android smartphones.

    The bug allows a hacker to modify the Android APK code without breaking a mobile application’s cryptographic signature (used by Android to determine whether or not apps have been tampered with), meaning that any application can be turned into a Trojan without being noticed by the app store, user or the phone.

  • Telefónica Digital has announced a global partnership with AirWatch that promises enterprises an all-in-one Security Mobile Device Management platform to solve their BYOD headaches.

    Based on AirWatch’s Mobile Device Management (MDM), Mobile Application Management (MAM), Secure Content Locker (SCL) and Email Container (EC) products, the new web-based, multi-platform solution enables enterprises to control all the devices on VPN and Wi-Fi corporate networks through a single HTML 5-supported console.

  • Orange Business Services is planning to release a new global cloud security product later this year as the firm targets increased revenues from the sector.

    The Flexible Identity offering is aimed at providing smartphone business users with a way to increase identity control amid the multiplication of cloud applications and the development of professional/personal uses.

  •  "You can't encrypt stupidity"

    A company that is offering fully-encrypted communications has said that somebody with $170 to spend on the right equipment and the right know-how could "easily" intercept mobile calls and texts from out of the air.
     
    As a result, the company argues, sensitive personal and commercial data and information is at risk as it is transmitted over the air, and requires extra protection. The company is offering a suite of encrypted comms products on IoS and Android (December) from $20 per month to address that need.

  • According to AdaptiveMobile’s Ongoing Threat Analysis (OTA) there has been a sharp increase in the number of battery saver apps designed to fraudulently bill users once downloaded.

    Many of these applications are promoted via banner advertising within legitimate apps or use ads designed to look like system updates, making them look genuine, but then direct users to locations outside conventional app stores.

    “Most of these applications fail to improve battery life and are designed to be misleading and trick people in to signing up to recurring premium SMS charges,” says Gareth Maclachlan, COO and founder, AdaptiveMobile. “We have recently seen a spike in the number of these rogue apps, which is a violation of trust for users and carries a high risk of churn for operators. With 83% of subscribers admitting that they would change their operator if their privacy was compromised, rogue apps such as these fake battery saving apps represent a clear and present danger for mobile providers.”

    “With increasing amounts of rich media content being accessed by users and battery life being evermore precious, battery saving apps are something that most mobile users are considering,” concludes Maclachlan. “Hackers and fraudsters seize every opportunity to steal data and funds from the unwary. Users may only become aware once they see the rogue transactions on their bill or in many cases may not notice at all. These ‘organisations’ rely on a large proportion of people not claiming a refund on the fraudulent fees.  Operators should make sure that they have a way of monitoring for this kind of activity so that they can protect subscribers effectively.”

    Top Tips for Users

    1. Do not use unknown sites to download apps .

    2. Beware of ‘free’ apps, and advertising within free apps, make sure they are from a reputable supplier

    3. Make sure that you read reviews dating back more than a month before downloading an app

    4. Check your operator’s website or community forum for information on rogue apps periodically

    5. Check your bill carefully and report any unscheduled charges immediately

Page 5 of 6