High Performance Network Security, Enterprise and Data-Center Firewall

High Performance Network Security, Enterprise and Data-Center Firewall

by RSS Axelle Apvrille  |  April 22, 2016  |  Category: Security Research
From time to time, AV analysts encounter "funny" Android malware or PUA: Riskware/Secretmimi!Android is one of those.  This riskware is a social app used to share secrets (gossip). The "fun" part is that you certai...
by RSS Kai Lu  |  April 13, 2016  |  Category: Security Research
Google fixed a denial of service vulnerability in Minikin library (CVE-2016-2414) with the Android patches of this month. I reported this vulnerability to Google in early March, 2016 and Google confirmed it was a duplica...
by RSS Axelle Apvrille  |  March 07, 2016  |  Category: Security Research
Our automated crawling and analysis system, SherlockDroid / Alligator, has just discovered a new Android malware family, on a third party marketplace. Figure 1: Part of SherlockDroid report. Android/BadMirror sample found as suspicious The malwar...
by RSS Ruchna Nigam  |  January 21, 2016  |  Category: Security Research
Malware has been known to use new and innovative ways to evade detection by Antivirus software, a phenomenon AV analysts have often seen with PC malware. Not a lot of examples of the same have been seen employed by mobile malware. A recently discove...
by RSS David Maciejak  |  December 09, 2015  |  Category: Industry Trends & News
For the 18th edition of the Association of Antivirus Asia Researchers conference, we flew to Da Nang in the beautiful country of Vietnam. Every major security vendor was present, not only those from Asia. After two full days of presentat...
by RSS Floser Bacurio  |  December 09, 2015  |  Category: Security Research
Mobile banking is a convenient way for users to complete transactions anywhere and anytime. KPMG predicts that the mobile banking user base will grow to 1.8 billion by 2019. And, when money is involved, the bad guys always find creative ways to...
by RSS Axelle Apvrille  |  August 25, 2015  |  Category: Security Research
Update Aug 28, 2015: Typos in the final table: CVE-2015-3864 does not concern covr but tx3g. CVE-2015-3828 does not occur for yrrc. Detecting the PoCs published by Zimperium is not difficult: you can fingerprint the PoCs, for example. Det...
by RSS Axelle Apvrille  |  August 14, 2015  |  Category: Security Research
You've heard about StageFright, right? Where a malicious MMS compromises an Android handset by exploiting vulnerabilities on the phone's mediaserver. Are you aware that StageFright is not an MMS issue, but an issue with anything that will tr...
by RSS Axelle Apvrille  |  August 11, 2015  |  Category: Security Research
There are already a couple of Android ransomware, but Android/Locker.CB!tr certainly is an interesting one. Smile! The malware is taking a picture of you   The malware claims it has detected "forbidden pornographic" pictures on your...
by RSS Axelle Apvrille  |  April 17, 2015  |  Category: Industry Trends & News
If you haven't had time to read Google's 44 page Android security report, this is a quick recap of what they say, and what we think about it. Globally, their report is consistent with our data, apart from a few glitches and a (not so surpris...
by RSS Axelle Apvrille  |  April 04, 2015  |  Category: Security Research
Insomni'hack's CTF included iOS challenges, but also an Android challenge in two parts. The write-up of part 1 of the Android challenge can be found on SCRT's blog. It is quite complicated, but in the end, we get a decrypted filesystem wi...
by RSS David Maciejak  |  April 02, 2015  |  Category: Industry Trends & News
For the second year in a row, BlackHat Asia was held in Singapore, at the end of March, in the luxury Marina Bay Sands hotel. As usual, the 2 days briefings were fully loaded of plenty of topics. 3 distinct tracks were offered, plus the business t...
by RSS Axelle Apvrille  |  January 12, 2015  |  Category: Security Research
As malware continues to grow on Android (900K malicious samples and 1,300 new per day), we sometimes forget attacks can also affect other devices... like Amazon's Kindle. The Kindle indeed runs Fire OS, a fork of Android. Thus, in several cases,...
by RSS Axelle Apvrille  |  October 30, 2014  |  Category: Security Research
This is a follow up post on Operation Emmental. If you are not aware of Emmental, please read this white paper, and our previous blog post. I wouldn't deserve to sign my posts as 'the Crypto Girl' if I didn't mention crypto in Android's Emmental mal...

FortiGuard Labs on the Web

search results hidden links