Category: Mobile Security

Mobile security and privacy of Apple iPhone called into question

| July 31, 2014

Researchers have discovered that a great deal of data held by these smartphones can be extracted from them.

According to a recent mobile security acknowledgement from Apple, it is possible for its employees to be able to use previously unpublicized techniques in order to be able to extract data from consumer iPhones, such as contact lists, photos, and other types of personal data such as text messages.

The equivalent techniques could also be applied by law enforcement to work around backup encryption.

This same mobile security sidestepping technique could be applied by others who have “trusted” forms of computers to which the iPhones have been connected. This according to an expert in privacy and security who brought about the admission from the tech giant. Last week, at a presentation that took place in a conference, Jonathan Zdziarski, a researcher, demonstrated how the services were capable of accessing considerable quantities of data by way of diagnostic services that Apple has said are meant for use by engineers.

The researcher said that iPhone users are not told when this mobile security and private data access is occurring.

Apple - Mobile SecurityZdziarski also stated that there is no way for users to disable the services or prevent them from running. This means that there is no way for the user of an iPhone to know which computers have already been labeled as a trusted device by way of the backup process and these users cannot choose to stop future connections. He stated that “There’s no way to `unpair’ except to wipe your phone.” He then went about demonstrating that he was capable of extracting private data from a locked phone through the use of a computer with trusted status.

Although some have stated that they feel that this is evidence that the National Security Agency and Apple are collaborating with each other, Apple has denied all claims that they have constructed any type of “back doors” to their mobile security be used by intelligence agencies. A statement from the company said that “We have designed iOS so that its diagnostic functions do not compromise user privacy and security, but still provides needed information to enterprise IT departments, developers and Apple for troubleshooting technical issues.”

Mobile security offerings from Avast could be improved by latest acquisition

| July 30, 2014

The antivirus software company has purchased a mobile app startup.

Avast has announced that it has acquired Inmite, a Czech-based mobile app developer, to help it become more mobile friendly and improve the mobile security it offers.

Inmite has developed several apps in the past for a variety of diverse companies.

The company has previous designed apps, particularly third party consumer apps for mobile television, mobile banking, a car purchasing app for škoda, and even apps for Google Glass. Previously it has also partner with Google and SAP.

According to Vince Steckler, Avast’s chief executive officer, Inmite’s 40 developers will essentially be revamping Avast’s user interface (UI). Steckler said that Inmite “primarily make consumer apps for third parties, so they have a heck of a lot of expertise in simplifying things.” The Avast team will grow to 80 as they hire on the additional 40 expert app developers.

Avast was founded in Prague in 1988 and has offices around the world in the U.S., China and Germany, but its main headquarters is located in the Czech Republic.

Avast is aiming to make its mobile security software more user friendly.

mobile security appA problem that many mobile security companies face is creating a practical app that is easy for consumer to use. Avast is hopeful that buying a company that is known for building innovative mobile apps could help it appeal to more mobile users. The challenge will be to build an application that is quite complex but that will be easy for consumers to understand how to use.

Steckler stated that “Cybercriminals are increasingly targeting smartphones and tablets – and consumers want our solutions to protect them from Wi-Fi attacks, phishing threats, or having their device lost or stolen.” He added that consumers want the freedom to know that when they use their device, it is safe in their hands. The company believes that Inmite will be able to meet the needs of its users around the world.

In addition, even though Avast does not really have any interest in integrating its software into third party devices or apps, it is interested in developing add ons. More specifically, it is interested in creating mobile security features that will improve the security of applications.