Six security vulnerabilities found in many banking apps

Of all the apps in your life, the one you hope is most secure is your banking app. Unfortunately, those responsible for many banking apps are making some major security missteps, leaving the apps – and their users – vulnerable. Research done by Ariel Sanchez of IOActive found that 40 apps from 60 major banks have at least one security vulnerability.

He didn’t name names, but Ariel tested iOS banking apps from Europe, Asia, the Middle East, Australia, India, South America and North...

By Mike Brown, 05 February 2014, 0 comments. Categories: Hacking, Security, Testing.

Bitcasa to be hacked at Apps World North America

Bitcasa is challenging developers to come up with new and innovative ways to leverage its cloud storage platform at the upcoming Apps Hackfest in San Francisco.

The cloud storage platform is inviting Hackfest participants to use the Bitcasa API to create a useful and easy way to drop and drag anything into a Bitcasa Drive. For example, a Go Pro plugin; an IFTTT-like automation; or a mobile app that collects and shares your favourite digital stuff.

The Bitcasa REST API provides a plug-and-play file system for...

By Jon Chang, 04 February 2014, 0 comments. Categories: Developers, Hacking.

How SASS can rescue front-end developers

In a nutshell: What is SASS? SASS is a CSS pre-processor which helps developers simplify complex stylesheet requirements. It's designed to cut out repetitive tasks, speed up your workflow and help organise your styles – read on for three quick tips explaining the do's and don'ts of using it in your projects... 1) Nest is best Problem You find yourself endlessly repeating parent selectors to target child elements. You're going against the DRY (do not repeat yourself) methodology. Solution Nesting is one of the most immediately obvious benefits of SASS. It enables you to organise your styles hierarchically and cut down on repetitive coding, using a familiar nesting pattern to group your selectors together. Beware It's easy to get carried away with nesting but as a general rule of thumb keep it within three levels. If...

By Kat Barstow, 19 December 2013, 0 comments. Categories: Code, Developers, Hacking.

The world of Android fragmentation in pictures

Time for your regular reminder that the Android world is giant and extremely fragmented! Open Signal put out a great visual looking at Android fragmentation in July, and compared it to last year’s landscape. Here are a few stats to warm you up:

  • 11,868 distinct Android devices seen in 2013
  • 3,997 distinct Android devices seen in 2012
  • 8 Android OS versions currently in use
  • 47.5% of devices are Samsungs
  • 37.9% of users are running Jelly Bean

Now, here’s the actual visual Open Signal produced to represent the Android device...

By Mike Brown, 13 August 2013, 0 comments. Categories: Android, Devices, Hacking, Security.

Microsoft settles 3,265 piracy cases, yet allows 100 fake Windows 8 apps

In two ‘yin and yang’ stories breaking this week, Microsoft has settled 3,265 software piracy cases across 43 different countries, yet Redmond allows “over 100” fake apps into the Windows Store which shipped alongside the latest iteration of its OS.

Let’s start with the good news; a software company as big as Microsoft is bound to get tied up in all kinds of lawsuit battles, and the last fiscal year was a hefty one.

Although keeping busy settling the 3,265 cases, the most...

By Ryan Daws, 10 July 2013, 1 comment. Categories: Developers, Hacking, Industry, Platforms, Security, Windows.

Java users need to get patching, warns report

Many complain about Java’s security, something Oracle is currently looking to improve. It certainly doesn’t help however that many users are using rather old versions, according to a report.

The analysis conducted by WebSense shows more than 50 percent of users run a version more than two years old. In fact, the study shows 75...

By Ryan Daws, 07 June 2013, 0 comments. Categories: Android, Developers, Hacking, Platforms, Security.

Oracle looking to improve Java security

Oracle’s Java, in its current form, is hardly the most secure of platforms. With huge breaches and exploits seemingly every week; the firm is looking to improve security.

The latest tactic by cybercriminals tricks users into running malicious code through a “signed” applet.

 

A website belonging to Chemnitz University of Technology in Germany was the latest found to be infected with the “g01pack”...

By Ryan Daws, 31 May 2013, 0 comments. Categories: Android, Code, Developers, Enterprise, Hacking, Platforms, Security, Testing.

New Android malware is ‘BadNews’ for millions of users

Security research firm LookOut has discovered a new form of malware hiding within Russian “clone apps.” This new threat goes by the apt name of ‘BadNews’ and is thought to have been downloaded “millions of times” across the 32 detected apps.

But what happens with this specific malware? It will attempt to get the user to download other apps which further infect your phone, such as ‘AlphaSMS’ – an app hijacking your phone to sign up to premium SMS services,...

By Ryan Daws, 22 April 2013, 0 comments. Categories: Android, App Stores, Hacking, Security.

Are Android users being left in the lurch by carriers?

The American Civil Liberties Union (ACLU) has made a complaint to the Federal Trade Commission (FTC) claiming that major US operators AT&T, Sprint, T-Mobile and Verizon are not doing enough to provide particular Android users with adequate security.

The ACLU links consumers using Droid iterations with “known, exploitable security vulnerabilities” as consequently using smartphones which do not receive “regular, prompt security updates”, and as a result the operators are...

By James Bourne, 17 April 2013, 0 comments. Categories: Android, Hacking, Platforms, Security.