GTC Featured News:

SMobile Security Analysis of Over 48,000 Android Market Applications

June 22, 2010

SMobile has published two previous whitepapers on the Android Market that have documented specific types of malicious applications and threats.  In this new whitepaper, SMobile has taken a more inclusive look at over 48,000 applications in the Android Market for applications that, based upon permissions and other attributes, could be considered malicious or suspicious.  This is the most comprehensive security analysis to date of the Android Market and has yielded staggering results.

pdfAnalysis of Android Market

Update: SMobile stands by the data unearthed in our study of the Android market. The key findings remain that thousands of applications available on this market are granted permissions that have the potential of placing the mobile device, sensitive user data and carrier networks at risk. SMobile has acknowledged and referenced four separate times in the whitepaper report that the Android Operating System and Android Market prompt users for permissions upon installation of applications.

Notwithstanding, the risk resides around the fact that users are not always knowledgeable enough to make decisions about the permissions they are allowing, nor do they take the time or give the proper credence to understand the implications. The most fundamental security concerns involving technology and the spread of Malware are around the poor decisions that humans make.

SMobile released the report with the goal of bringing to light that end-users need to make educated decisions regarding the applications they are installing and that they can use third-party security technology to assist in making these decisions. When a situation exists where applications categorized as “Entertainment”, “News and Weather”, “Sports” and “Comics” are granted permission to make phone calls without the user’s knowledge, it is the responsibility of SMobile to bring to the attention of the public that over-reaching permissions in the Market pose a tangible risk and ripe environment for exploitation. These findings do not, in any way, disparage the Android Operating System or the Android Market. To be clear, SMobile is not singling out a specific platform and has released several vulnerability studies in the past, looking across all smartphone operating systems. This study of the Android Market was simply the latest.

iPhone Encryption Report

August 25, 2009

SMobile has released a detailed forensic analysis of iPhone encryption and security technologies as compared to their newly released ContactCrypt encryption application currently available on the Apple App Store. In this detailed report, SMobile GTC engineers detail how existing security technologies on the iPhone 3G and 3GS can be bypassed and how ContactCrypt provides a much needed increase in security to protect sensitive information on the device. The results show that ContactCrypt remains as the only security and encryption solution available for the iPhone which cannot be bypassed by known means.

pdfiPhone Encryption Report
Latest Security News:

SMobile GTC Sees Android Malware Coming

Filed Under: Android, Feature, GTC Blog
March 12, 2010

Open source versus closed source.  It’s a discussion that often leads to heated arguments and one that will likely continue well beyond its usefulness.  The discussion began before many of us realized there would need to be terms such as “malware” and the often incorrectly used “hacker”.  Regardless of what side of the discussion you come down on, the term Android has not helped to lessen the veracity of the debate.  Since Google released the first Smartphone operating system that was supposed to be completely open source, the debate between BlackBerry, Windows Mobile, iPhone and Symbian users continues to get louder.

Whether you’re new to the Smartphone revolution or are an Android convert from some other platform, there is a reason that you chose Android.  Some wanted to break the stuffy business-like feel of the BlackBerry.  Others were excited about the possibilities that an operating system built on a Linux kernel with incredible customization capabilities brings.  Some wanted something that was friendly or easier to use than the Windows Mobile or their Symbian device.  Then there are the ones that just want to be anti-Apple.  There are just as many anti-everything-Apple as there are Apple “fanboys” in the world.  There are also those that just got a deal from their provider that they couldn’t refuse.  Regardless of the reason, Andriod’s market share is growing….

To continue reading, download the full Android Malware Whitepaper

pdfAndroid Malware Whitepaper

Study of BlackBerry Proof-of-Concept Malicious Applications

Filed Under: Feature, GTC Blog, News
January 6, 2010

SMobile’s Global Threat Center (GTC) has released a research study on proof of concept malicious applications for BlackBerry platform. This research exposes the weakened security posture of BlackBerry device that operate under the BlackBerry Internet Service environment. The proof of concept applications discussed in this research are developed to examine the response of BlackBerry inbuilt security framework. Through this research, SMobile concludes that there are certain instances of attacks that may be successful in bypassing the security framework of BlackBerry and poses a significant threat to privacy and confidentiality of the user. This research paper can be downloaded here:

pdfBlackBerry paper
Subscribe to receive weekly email updates

Your email:

 

Loading...