Mobile ad fraud: it’s a real thing that hurts the whole mobile technology ecosystem – from end users to mobile operators and even advertisers. Upstream, a mobile technology company, released its 2019 report, The Invisible Digital Threat. It was an alarming read, revealing just how severe of a threat mobile ad fraud is across the globe. This threat occurs via malicious mobile … [Read more...]
WIBattack, Simjacker’s Sibling
If the announcement of Simjacker wasn’t startling enough, yet another SIM-based vulnerability has been released – and it’s been known for four years! Ginno Security Laboratory, a non-profit security research organization, claims to have discovered both S@Tattack, which is the name they dubbed Simjacker (which is what AdaptiveMobile Security named the exploit), as well as the … [Read more...]
Unpatched 0-Day Android Vulnerability
Having been notified back in March, Google has yet to patch a 0-day vulnerability that allows for privilege escalation attacks. TrendMicro researchers in collaboration with the Zero Day Initiative went public on September 4th, 2019. In order to exploit this vulnerability, attackers must first obtain the ability to execute high-privileged code and would need local access to the … [Read more...]
A Silent Mobile Threat: Simjacker
This post should not be confused with my previously written article about SIM-jacking and should be taken way more seriously. Researchers at AdaptiveMobile Security recently went public with a new but silent threat: Simjacker. To qualify the more serious threat factor, this attack is advanced and reveals a flaw within SIM card implementations, as well as requiring minimal user … [Read more...]