Researchers: Adam Donenfeld (@doadam) Relevant Operating Systems: iOS, tvOS and watchOS CVE: CVE-2018-4109 As a part of zLabs platform research team (and as a researcher in general), I often find myself wandering in IDA, reversing random pieces of code. In this blog post, I’m going to show a vulnerability I found deep inside … Read More
As part of our platform research in Zimperium zLabs, I have recently discovered a vulnerability in a privileged Android service called MediaCasService and reported it to Google. Google designated it as CVE-2018-9539 and patched it in the November security update (2018-11-01 patch level). In this blog post, I will describe the technical details of this … Read More
Zimperium is announcing the availability of the latest version of zIAP, our industry-leading, machine learning-based mobile security solution developed specifically to embed into existing mobile apps. Organizations who build mobile apps frequently struggle with how to successfully meet the critical need to protect sensitive data, reduce fraud and ensure security for mobile users. zIAP meets … Read More
As part of our platform research in Zimperium zLabs, I have recently disclosed a critical vulnerability affecting multiple high-privileged Android services to Google. Google designated it as CVE-2018-9411 and patched it in the July security update (2018-07-01 patch level), including additional patches in the September security update (2018-09-01 patch level). I also wrote a proof-of-concept … Read More
Webinar will reveal how companies across multiple industries are protecting their mobile devices from attacks. Zimperium is providing customers, media and the general public with a live webinar in which they will learn about the mobile threats facing multiple industries – including financial services, consulting, healthcare, legal and local government – through real-life examples from Zimperium’s … Read More
