general

new forms of malware via calendar invite even more annoying

more often noticed and actually effected by myself – google calenar display per default new invites from inbox, usually displayed in calendar for easy scheduleing or to block the timeslot – so attacker can target your gmail account to push notification directly to your mobile device when the fake calendar entry occurs

to get rid of this spam, it’s not enough to delete each calendar entry, because a new invite immediately popup’s in your calendar – your have to disable the feature “automatically add invitations” in google calendar event settings

further … a vulnerability in WIB sim-browser can let attackers globally take control of hundreds of millions of the victim mobile phones worldwide to make a phone call, send SMS to any phone numbers, send victim’s location, launch WAP browser, etc. – read more

technology

cookbook: have I been breached or leaked?

… again 620 million accounts were stolen – it is all about your data – in the digitalisation it defines who you are – who do you trust – the following assist you to check if you got pwned and should raise the awareness


leaked

accounts monitored and collected in this database
=>> https://hacked-emails.com/


check

if you got pwned, enter your email address

=>> https://haveibeenpwned.com/

dns

leak is atransparent way to intimidate your traffic =>>https://www.dnsleaktest.com/

tracking

of your browser analyse your behavior, quick test of your browser is safe against tracking
=>> https://panopticlick.eff.org/

bad passwords

still common in 2019, if your password is listeted here? change it!
=>> https://www.prweb.com

read more about secure authentication and multi factor

tips

to being completely anonymous online
=>> https://www.csoonline.com

google, technology

evolution of android security updates

android has a huge diversity in os versions, for enterpise is mandatory to provide high security …

arrowread more: mobile os version spread

samsung

launched it’s own EFOTA service to control software update remote to your managed samsung device @samsung

android enterprise recommended

android devices must satisfy numerous requirements, including regular security updates: at least every 90 days, with monthly updates strongly recommended. @google

 

android one

designed by google. smart, secure and simply amazing

devices that run the unmodified android to provide best compatibility and support @google

project treble

restructued android os framework since android 8 to make it easier, faster, and less costly for manufacturers to provide updates @google

 

update: what enterprise devices already got, will privided to all android devices – google mandates two years of security updates for popular phones in new android contract

 

android
be aware of malware

technology

everything you need to know about malware and how to protect

 

rootkit, control your device and get your data – mining-software, steal your power to mine crypto currency – trojan, install other malware, to send spam from your device or steal information like passwords

 

only 14% of businesses have implemented even the most basic cybersecurity practices

 

 

the signs are clear that mobile threats can no longer be ignored

 

 

a combination of vulnerability management, anomaly detection, behavioral profiling, intrusion prevention and transport security technologies to protect mobile devices and applications from advanced threats

 

 

general

ai to secure appstore

google created a news technique to prevent “bad” apps to be published via play store @engadget

the company took down over 700,000 apps that violated play stores policies last year (a 70 percent increase over 2016)

 

google_play_protect

google play protect is already a service to protect android, it is built into every device with google play

apple user are save as well, if they use the apple appstore, there are also just scanned apps approved

google‘s last years app store growth or enterprise protection services @appstore recap