Webinar will review enterprise security challenges and offer fresh insights on the state of securing mobility. Zimperium is providing customers, media and the general public with a live webinar in which they will learn about the security and privacy risks that are on the rise as a result of the […]
Resources
Webinar: Protecting Finance Mobile Apps Against Hackers
Webinar reveals how financial services firms can reduce fraud by protecting their mobile apps. Zimperium is providing customers, media and the general public with a live webinar in which they will learn about how financial services firms can reduce the risk of security threats and fraud for customers who use their […]
CVE-2018-4109: Overwriting kernel memory with a few video packets
Researchers: Adam Donenfeld (@doadam) Relevant Operating Systems: iOS, tvOS and watchOS CVE: CVE-2018-4109 As a part of zLabs platform research team (and as a researcher in general), I often find myself wandering in IDA, reversing random pieces of code. In this blog post, I’m going to show a […]
CVE-2018-9539: Use-after-free vulnerability in privileged Android service
As part of our platform research in Zimperium zLabs, I have recently discovered a vulnerability in a privileged Android service called MediaCasService and reported it to Google. Google designated it as CVE-2018-9539 and patched it in the November security update (2018-11-01 patch level). In this blog post, I will describe […]
Your App, Our Security: Zimperium Launches Latest Version of Machine Learning-Based Security for Mobile Apps
Zimperium is announcing the availability of the latest version of zIAP, our industry-leading, machine learning-based mobile security solution developed specifically to embed into existing mobile apps. Organizations who build mobile apps frequently struggle with how to successfully meet the critical need to protect sensitive data, reduce fraud and ensure security […]
CVE-2018-9411: New critical vulnerability in multiple high-privileged Android services
As part of our platform research in Zimperium zLabs, I have recently disclosed a critical vulnerability affecting multiple high-privileged Android services to Google. Google designated it as CVE-2018-9411 and patched it in the July security update (2018-07-01 patch level), including additional patches in the September security update (2018-09-01 patch level). […]
Webinar: A Summary Analysis of How Customer Data Is Being Threatened On Mobile Devices Across Industries
Webinar will reveal how companies across multiple industries are protecting their mobile devices from attacks. Zimperium is providing customers, media and the general public with a live webinar in which they will learn about the mobile threats facing multiple industries – including financial services, consulting, healthcare, legal and local government – […]
Webinar: Real World Examples of Protecting an Oil & Gas Company from Mobile Threats
Webinar will reveal how oil and gas companies can protect their mobile devices from attacks. Zimperium is providing customers, media and the general public with a live webinar in which they will learn about the mobile threats facing the oil and gas industry through real-life examples from one of Zimperium’s […]
CVE-2018-4282: Out-of-bounds read vulnerability in AppleT8015PPM.kext
Researchers: Adam Donenfeld (@doadam) Relevant Operating Systems: iOS, tvOS and watchOS CVE: CVE-2018-4282 Summary As a part of our ongoing mobile platform research, zLabs recently discovered a read-out-of-bounds vulnerability in the AppleT8015PPM.kext that allows an attacker to read out of its supplied structureInput. The read data is being used […]
FreeRTOS TCP/IP Stack Vulnerabilities Put A Wide Range of Devices at Risk of Compromise: From Smart Homes to Critical Infrastructure Systems
Researchers: Ori Karliner (@oriHCX) Relevant Operating Systems: FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), AWS FreeRTOS up to V1.3.1, WHIS OpenRTOS and SafeRTOS (With WHIS Connect middleware TCP/IP components) . CVE List: [wpsm_comparison_table id=”4″ class=””] As a part of our ongoing IoT platform research, zLabs recently analyzed some of the leading […]
Mobile Security Updates
Receive Zimperium proprietary research notes and vulnerability bulletins in your inbox