The Latest in IT Security

Posts Tagged ‘application package’

The Android Master Key vulnerability, which was first reported by BlueBox Security, has been big news this month. McAfee explained the vulnerability and defense against future malware exploiting it in a previous blog.Last week the first malware that exploit the Master Key vulnerability were found in an Android application market in China. The app used […]

Read more ...

Earlier this month, we discussed the discovery of the Master Key vulnerability that allows attackers to inject malicious code into legitimate Android applications without invalidating the digital signature. We expected the vulnerability to be leveraged quickly due to ease of exploitation, and it has.Norton Mobile Insight-our system for harvesting and automatically analyzing Android applications from […]

Read more ...

Protip: don’t install an Android application package file if it’s named “Certificate.apk”.It’s not legit (obviously).Trojan:Android/Pincer.A is able to forward SMS messages and perform other actions based on commands it receives from its C&C. When installed, it will appear in the application menu as “Certificate” and will display related bogus messages when run. Previous malicious mobile […]

Read more ...





Latest Comments

Social Networks