• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Two Mobile Platform Threats – Daily Security Byte EP.100

June 19, 2015 By Corey Nachreiner

Wow, it’s been 100 daily videos already?!

I started this daily security video experiment in January of this year, and though I haven’t been able to cover every single day, we’ve had quite a ride of InfoSec related stories so far. If you find this daily post useful, or if you have suggestions on ways we might improve it to fit your needs, let us know.

Meanwhile, the InfoSec news doesn’t pause despite the 100th episode. Today, I cover two mobile platform related security vulnerabilities. One actually affects all Apple’s OSs (OS X & iOS) while the other affects Samsung Android devices. Watch today’s episode to learn about these new threats, and what you should do about them.

 

(Episode Runtime: 4:10)

Direct YouTube Link: https://www.youtube.com/watch?v=fzmsHJd2Kms

EPISODE REFERENCES:

  • Researcher disclose vulnerabilities to steal iOS and OS X passwords – MacRumors
  • XARA password stealing flaws – ThreatPost
  • What you need to know about XARA – iMore
  • A detailed, layman friendly, description of the XARA flaws – iMore
  • The complete XARA research paper (very technical) [PDF] – Google Drive
  • 600M Samsung mobiles vulnerable to new vulnerability – BGR
  • Samsung promises to fix the flaw – Samsung Tomorrow
  • Many Android apps fail at HTTPS login – Ars Technica

— Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Uncategorized Tagged With: Apple, Google, Hacking, HTTPS, Infosec news, keychain, Mobile, Samsung, Software vulnerabilities, SwiftKey, XARA, Zero day exploit

Comments

  1. David Kim says

    June 19, 2015 at 6:19 pm

    Hello, this is David from Korea. I’m glad to have been listening to yor daily security news. And also, congratulations!!! I want to say that you are true sincerity posting this news every single day. It have been very useful to me what should I focus on about infosec. I’m appreciated. I hope more people can see this news. Thanks.

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • US National Cybersecurity Strategy
  • Cybersecurity’s Toll on Mental Health
  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • Here Come The Regulations

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • Here Come The Regulations
  • US National Cybersecurity Strategy
  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • Cybersecurity’s Toll on Mental Health
  • Successfully Prosecuting a Russian Hacker
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use