FireEye has seen the development of various third-party solutions that allow developers to remotely hot patch an iOS app on a non-jailbroken device without going through Apple’s review process, leading to security risks. This blog examines Rollout.io, a commercial solution that addresses the remote patching problem while remaining focused on security.Read more...
Entries filed under 'application security'
Threat Research Blog
The FireEye Labs team posts blog entries under threat research to present and discuss cyber attacks and threat intelligence from a technical perspective. They cover the full spectrum of exploits and vulnerabilities, including advanced malware and targeted threats.
January 27, 2016 8:00 AM By Jing Xie, Jimmy Su, Zhaofeng Chen | Mobile Threats, Threat Research
What are the security risks of iOS apps? While some alternative solutions make it more efficient for developers ito update their apps, they don't meet the strict security standards Apple has in place, which could lead to compromised code.Read more...
November 4, 2015 1:00 PM By Zhaofeng Chen, Adrian Mettler, Peter Gilbert , Yong Kang | Mobile Threats, Threat Research
November 3, 2015 7:27 AM By Yong Kang , Raymond Wei, Zhaofeng Chen | Botnets, Threat Research
February 11, 2014 6:15 PM By Wade Woolwine
To effectively champion for the time and resources that security features warrant, application security professionals must develop an appreciation for the priorities of each stakeholder and tailor discussions accordingly. I wrote this whitepaper to provide security professionals with the essential talking points needed to begin a discussion on baking in application security from the very start of a project.Read more...