ºÝºÝߣshows by User: nowsecure / http://www.slideshare.net/images/logo.gif ºÝºÝߣshows by User: nowsecure / Mon, 06 Apr 2020 17:20:02 GMT ºÝºÝߣShare feed for ºÝºÝߣshows by User: nowsecure iOS recon with Radare2 /slideshow/ios-recon-with-radare2/231507792 virseccon-radare2forios-200406172002
Originally presented April 4, 2020 @ VirSecCon2020]]>
Originally presented April 4, 2020 @ VirSecCon2020]]> Mon, 06 Apr 2020 17:20:02 GMT /slideshow/ios-recon-with-radare2/231507792 nowsecure@slideshare.net(nowsecure) iOS recon with Radare2 nowsecure Originally presented April 4, 2020 @ VirSecCon2020 <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/virseccon-radare2forios-200406172002-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented April 4, 2020 @ VirSecCon2020
iOS recon with Radare2 from NowSecure
]]> 459 1 https://cdn.slidesharecdn.com/ss_thumbnails/virseccon-radare2forios-200406172002-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 From Tangled Mess to Organized Flow: A Mobile DevSecOps Reference Architecture /nowsecure/from-tangled-mess-to-organized-flow-a-mobile-devsecops-reference-architecture webinar-fromtangledmesstoorganizedflowamobiledevsecopsreferencearchitecture3-200319185939
Originally Recorded March 18, 2020 DevSecOps enthusiast D.J. Schleen unveils the latest updates to the DevSecOps Reference Architecture, an extensive chart of open-source tools and third-party applications that now includes mobile app pipelines. Join us to score your own copy and learn: + The most popular tools and integrations to automate and scale your pipeline + How and where mobile DevSecOps differs from web + Where to apply dynamic and interactive application security testing to speed app delivery]]>
Originally Recorded March 18, 2020 DevSecOps enthusiast D.J. Schleen unveils the latest updates to the DevSecOps Reference Architecture, an extensive chart of open-source tools and third-party applications that now includes mobile app pipelines. Join us to score your own copy and learn: + The most popular tools and integrations to automate and scale your pipeline + How and where mobile DevSecOps differs from web + Where to apply dynamic and interactive application security testing to speed app delivery]]> Thu, 19 Mar 2020 18:59:39 GMT /nowsecure/from-tangled-mess-to-organized-flow-a-mobile-devsecops-reference-architecture nowsecure@slideshare.net(nowsecure) From Tangled Mess to Organized Flow: A Mobile DevSecOps Reference Architecture nowsecure Originally Recorded March 18, 2020 DevSecOps enthusiast D.J. Schleen unveils the latest updates to the DevSecOps Reference Architecture, an extensive chart of open-source tools and third-party applications that now includes mobile app pipelines. Join us to score your own copy and learn: + The most popular tools and integrations to automate and scale your pipeline + How and where mobile DevSecOps differs from web + Where to apply dynamic and interactive application security testing to speed app delivery <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/webinar-fromtangledmesstoorganizedflowamobiledevsecopsreferencearchitecture3-200319185939-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally Recorded March 18, 2020 DevSecOps enthusiast D.J. Schleen unveils the latest updates to the DevSecOps Reference Architecture, an extensive chart of open-source tools and third-party applications that now includes mobile app pipelines. Join us to score your own copy and learn: + The most popular tools and integrations to automate and scale your pipeline + How and where mobile DevSecOps differs from web + Where to apply dynamic and interactive application security testing to speed app delivery
From Tangled Mess to Organized Flow: A Mobile DevSecOps Reference Architecture from NowSecure
]]> 597 1 https://cdn.slidesharecdn.com/ss_thumbnails/webinar-fromtangledmesstoorganizedflowamobiledevsecopsreferencearchitecture3-200319185939-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Android Q & iOS 13 Privacy Enhancements /slideshow/android-q-ios-13-privacy-enhancements/156505261 slideshare-comingsoonandroidqios13privacyenhancements-190719172641
Originally Recorded July 19, 2019 Apple and Google’s forthcoming mobile operating systems boast a bevy of privacy features that enable users to seize more control of their personal data. NowSecure Mobile Security Analyst Tony Ramirez will dives into Android and iOS application security and privacy enhancements and what they mean for mobile DevSecOps teams. Join us to learn about: + Increased transparency and granularity over location tracking + New protections for sensitive information + Safer data exchanges in Android Q through TLS 1.3 encryption]]>
Originally Recorded July 19, 2019 Apple and Google’s forthcoming mobile operating systems boast a bevy of privacy features that enable users to seize more control of their personal data. NowSecure Mobile Security Analyst Tony Ramirez will dives into Android and iOS application security and privacy enhancements and what they mean for mobile DevSecOps teams. Join us to learn about: + Increased transparency and granularity over location tracking + New protections for sensitive information + Safer data exchanges in Android Q through TLS 1.3 encryption]]> Fri, 19 Jul 2019 17:26:41 GMT /slideshow/android-q-ios-13-privacy-enhancements/156505261 nowsecure@slideshare.net(nowsecure) Android Q & iOS 13 Privacy Enhancements nowsecure Originally Recorded July 19, 2019 Apple and Google’s forthcoming mobile operating systems boast a bevy of privacy features that enable users to seize more control of their personal data. NowSecure Mobile Security Analyst Tony Ramirez will dives into Android and iOS application security and privacy enhancements and what they mean for mobile DevSecOps teams. Join us to learn about: + Increased transparency and granularity over location tracking + New protections for sensitive information + Safer data exchanges in Android Q through TLS 1.3 encryption <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-comingsoonandroidqios13privacyenhancements-190719172641-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally Recorded July 19, 2019 Apple and Google’s forthcoming mobile operating systems boast a bevy of privacy features that enable users to seize more control of their personal data. NowSecure Mobile Security Analyst Tony Ramirez will dives into Android and iOS application security and privacy enhancements and what they mean for mobile DevSecOps teams. Join us to learn about: + Increased transparency and granularity over location tracking + New protections for sensitive information + Safer data exchanges in Android Q through TLS 1.3 encryption
Android Q & iOS 13 Privacy Enhancements from NowSecure
]]> 1021 9 https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-comingsoonandroidqios13privacyenhancements-190719172641-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Debunking the Top 5 Myths About Mobile AppSec /slideshow/debunking-the-top-5-myths-about-mobile-appsec/152074045 webinar-debunkingthetop5mythsaboutmobileappsec-190626225952
Originally presented June 24, 2019 https://www.nowsecure.com/resource/debunking-the-top-5-myths-about-mobile-appsec/ It’s hard to believe that mobile app stores are more than a decade old yet some crazy misconceptions about mobile application security still linger. Have you heard these before? - Testing mobile apps is the same as web apps - SAST is good enough for mobile, you don’t need DAST - Mobile apps are secure because Apple and Google security test them - Outsourcing a penetration test once per year is sufficient to mitigate risk Sort fact from fiction and learn how to ensure your mobile appsec program is on the right track. You may discover some surprising things about modern mobile application security. ]]>
Originally presented June 24, 2019 https://www.nowsecure.com/resource/debunking-the-top-5-myths-about-mobile-appsec/ It’s hard to believe that mobile app stores are more than a decade old yet some crazy misconceptions about mobile application security still linger. Have you heard these before? - Testing mobile apps is the same as web apps - SAST is good enough for mobile, you don’t need DAST - Mobile apps are secure because Apple and Google security test them - Outsourcing a penetration test once per year is sufficient to mitigate risk Sort fact from fiction and learn how to ensure your mobile appsec program is on the right track. You may discover some surprising things about modern mobile application security. ]]> Wed, 26 Jun 2019 22:59:52 GMT /slideshow/debunking-the-top-5-myths-about-mobile-appsec/152074045 nowsecure@slideshare.net(nowsecure) Debunking the Top 5 Myths About Mobile AppSec nowsecure Originally presented June 24, 2019 https://www.nowsecure.com/resource/debunking-the-top-5-myths-about-mobile-appsec/ It’s hard to believe that mobile app stores are more than a decade old yet some crazy misconceptions about mobile application security still linger. Have you heard these before? - Testing mobile apps is the same as web apps - SAST is good enough for mobile, you don’t need DAST - Mobile apps are secure because Apple and Google security test them - Outsourcing a penetration test once per year is sufficient to mitigate risk Sort fact from fiction and learn how to ensure your mobile appsec program is on the right track. You may discover some surprising things about modern mobile application security. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/webinar-debunkingthetop5mythsaboutmobileappsec-190626225952-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented June 24, 2019 https://www.nowsecure.com/resource/debunking-the-top-5-myths-about-mobile-appsec/ It’s hard to believe that mobile app stores are more than a decade old yet some crazy misconceptions about mobile application security still linger. Have you heard these before? - Testing mobile apps is the same as web apps - SAST is good enough for mobile, you don’t need DAST - Mobile apps are secure because Apple and Google security test them - Outsourcing a penetration test once per year is sufficient to mitigate risk Sort fact from fiction and learn how to ensure your mobile appsec program is on the right track. You may discover some surprising things about modern mobile application security.
Debunking the Top 5 Myths About Mobile AppSec from NowSecure
]]> 1304 2 https://cdn.slidesharecdn.com/ss_thumbnails/webinar-debunkingthetop5mythsaboutmobileappsec-190626225952-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 OSS Tools: Creating a Reverse Engineering Plug-in for r2frida /slideshow/oss-tools-creating-a-reverse-engineering-plugin-for-r2frida/142745904 webinar-osstoolscreatingareverseengineeringplug-inforr2frida-190429135742
Hear Radare creator Sergi (Pancake) Alvarez conduct a deep dive of r2frida, a framework that combines the best of Frida and Radare. Frida and Radare are leading open-source reverse engineering tools sponsored by NowSecure. Targeting intermediate to advanced users and security analysts, this overview will highlight the r2frida plug-in architecture. Watch the webinar: http://bit.ly/2DBHt7M Watch this webinar to learn: + What dynamic and static techniques the individual tools provide to assist security analysts with reverse engineering; + Why r2frida’s plugin architecture eases the task of performing reverse engineering workflows; + How to create your own new plug-in.]]>
Hear Radare creator Sergi (Pancake) Alvarez conduct a deep dive of r2frida, a framework that combines the best of Frida and Radare. Frida and Radare are leading open-source reverse engineering tools sponsored by NowSecure. Targeting intermediate to advanced users and security analysts, this overview will highlight the r2frida plug-in architecture. Watch the webinar: http://bit.ly/2DBHt7M Watch this webinar to learn: + What dynamic and static techniques the individual tools provide to assist security analysts with reverse engineering; + Why r2frida’s plugin architecture eases the task of performing reverse engineering workflows; + How to create your own new plug-in.]]> Mon, 29 Apr 2019 13:57:42 GMT /slideshow/oss-tools-creating-a-reverse-engineering-plugin-for-r2frida/142745904 nowsecure@slideshare.net(nowsecure) OSS Tools: Creating a Reverse Engineering Plug-in for r2frida nowsecure Hear Radare creator Sergi (Pancake) Alvarez conduct a deep dive of r2frida, a framework that combines the best of Frida and Radare. Frida and Radare are leading open-source reverse engineering tools sponsored by NowSecure. Targeting intermediate to advanced users and security analysts, this overview will highlight the r2frida plug-in architecture. Watch the webinar: http://bit.ly/2DBHt7M Watch this webinar to learn: + What dynamic and static techniques the individual tools provide to assist security analysts with reverse engineering; + Why r2frida’s plugin architecture eases the task of performing reverse engineering workflows; + How to create your own new plug-in. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/webinar-osstoolscreatingareverseengineeringplug-inforr2frida-190429135742-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Hear Radare creator Sergi (Pancake) Alvarez conduct a deep dive of r2frida, a framework that combines the best of Frida and Radare. Frida and Radare are leading open-source reverse engineering tools sponsored by NowSecure. Targeting intermediate to advanced users and security analysts, this overview will highlight the r2frida plug-in architecture. Watch the webinar: http://bit.ly/2DBHt7M Watch this webinar to learn: + What dynamic and static techniques the individual tools provide to assist security analysts with reverse engineering; + Why r2frida’s plugin architecture eases the task of performing reverse engineering workflows; + How to create your own new plug-in.
OSS Tools: Creating a Reverse Engineering Plug-in for r2frida from NowSecure
]]> 1310 6 https://cdn.slidesharecdn.com/ss_thumbnails/webinar-osstoolscreatingareverseengineeringplug-inforr2frida-190429135742-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Building a Mobile App Pen Testing Blueprint /slideshow/building-a-mobile-app-pen-testing-blueprint/132633906 slideshare-buildingamobileapppentestingblueprint-190221012143
Mobile penetration testing helps uncover app exploits and vulnerabilities and is a crucial component of risk assessment. However, many people fear the complexity and don’t know where to get started. It all begins with a solid plan of attack. NowSecure veterans of hundreds of mobile app pen tests will walk you through the process of assembling a pen testing playbook to hack your app. This webinar covers: +Tips and tricks for targeting common issues +The best tools for the job +How to document findings to close the loop on vulnerabilities.]]>
Mobile penetration testing helps uncover app exploits and vulnerabilities and is a crucial component of risk assessment. However, many people fear the complexity and don’t know where to get started. It all begins with a solid plan of attack. NowSecure veterans of hundreds of mobile app pen tests will walk you through the process of assembling a pen testing playbook to hack your app. This webinar covers: +Tips and tricks for targeting common issues +The best tools for the job +How to document findings to close the loop on vulnerabilities.]]> Thu, 21 Feb 2019 01:21:43 GMT /slideshow/building-a-mobile-app-pen-testing-blueprint/132633906 nowsecure@slideshare.net(nowsecure) Building a Mobile App Pen Testing Blueprint nowsecure Mobile penetration testing helps uncover app exploits and vulnerabilities and is a crucial component of risk assessment. However, many people fear the complexity and don’t know where to get started. It all begins with a solid plan of attack. NowSecure veterans of hundreds of mobile app pen tests will walk you through the process of assembling a pen testing playbook to hack your app. This webinar covers: +Tips and tricks for targeting common issues +The best tools for the job +How to document findings to close the loop on vulnerabilities. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-buildingamobileapppentestingblueprint-190221012143-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Mobile penetration testing helps uncover app exploits and vulnerabilities and is a crucial component of risk assessment. However, many people fear the complexity and don’t know where to get started. It all begins with a solid plan of attack. NowSecure veterans of hundreds of mobile app pen tests will walk you through the process of assembling a pen testing playbook to hack your app. This webinar covers: +Tips and tricks for targeting common issues +The best tools for the job +How to document findings to close the loop on vulnerabilities.
Building a Mobile App Pen Testing Blueprint from NowSecure
]]> 1092 3 https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-buildingamobileapppentestingblueprint-190221012143-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Mobile App Security Predictions 2019 /slideshow/mobile-app-security-predictions-2019/128955342 slideshare-mobileappsecuritypredictions2019-190123171117
Originally presented January 23, 2019 -https://www.brighttalk.com/webcast/15139/344870?utm_source=ºÝºÝߣshare&utm_medium=referral&utm_campaign=344870 2019 is already shaping up to be a standout year for mobile appsec and secure DevOps. If we can say anything with certainty, it’s that cybersecurity is unpredictable and the wave of DevSecOps is unstoppable. But we foresee intensifying concerns about digital privacy amidst high-profile breaches. This deck lists our predictions about what’s in store for our customers and the community in the year ahead. Our veteran industry leaders will prognosticate about developments in these areas: + Mobile ecosystem: OSes, devices, apps and app stores + Evolving mobile security threats + The rise of DevSecOps and the automation of everything + The disruptive economics of automating manual pen testing]]>
Originally presented January 23, 2019 -https://www.brighttalk.com/webcast/15139/344870?utm_source=ºÝºÝߣshare&utm_medium=referral&utm_campaign=344870 2019 is already shaping up to be a standout year for mobile appsec and secure DevOps. If we can say anything with certainty, it’s that cybersecurity is unpredictable and the wave of DevSecOps is unstoppable. But we foresee intensifying concerns about digital privacy amidst high-profile breaches. This deck lists our predictions about what’s in store for our customers and the community in the year ahead. Our veteran industry leaders will prognosticate about developments in these areas: + Mobile ecosystem: OSes, devices, apps and app stores + Evolving mobile security threats + The rise of DevSecOps and the automation of everything + The disruptive economics of automating manual pen testing]]> Wed, 23 Jan 2019 17:11:17 GMT /slideshow/mobile-app-security-predictions-2019/128955342 nowsecure@slideshare.net(nowsecure) Mobile App Security Predictions 2019 nowsecure Originally presented January 23, 2019 -https://www.brighttalk.com/webcast/15139/344870?utm_source=ºÝºÝߣshare&utm_medium=referral&utm_campaign=344870 2019 is already shaping up to be a standout year for mobile appsec and secure DevOps. If we can say anything with certainty, it’s that cybersecurity is unpredictable and the wave of DevSecOps is unstoppable. But we foresee intensifying concerns about digital privacy amidst high-profile breaches. This deck lists our predictions about what’s in store for our customers and the community in the year ahead. Our veteran industry leaders will prognosticate about developments in these areas: + Mobile ecosystem: OSes, devices, apps and app stores + Evolving mobile security threats + The rise of DevSecOps and the automation of everything + The disruptive economics of automating manual pen testing <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-mobileappsecuritypredictions2019-190123171117-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented January 23, 2019 -https://www.brighttalk.com/webcast/15139/344870?utm_source=ºÝºÝߣshare&amp;utm_medium=referral&amp;utm_campaign=344870 2019 is already shaping up to be a standout year for mobile appsec and secure DevOps. If we can say anything with certainty, it’s that cybersecurity is unpredictable and the wave of DevSecOps is unstoppable. But we foresee intensifying concerns about digital privacy amidst high-profile breaches. This deck lists our predictions about what’s in store for our customers and the community in the year ahead. Our veteran industry leaders will prognosticate about developments in these areas: + Mobile ecosystem: OSes, devices, apps and app stores + Evolving mobile security threats + The rise of DevSecOps and the automation of everything + The disruptive economics of automating manual pen testing
Mobile App Security Predictions 2019 from NowSecure
]]> 827 5 https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-mobileappsecuritypredictions2019-190123171117-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Jeff's Journey: Best Practices for Securing Mobile App DevOps /slideshow/jeffs-journey-best-practices-for-securing-mobile-app-devops/125331523 slideshare-bestpracticesforsecuringmobileappdevops-181207222122
Originally Presented December 6, 2018 As DevOps teams seek to accelerate the mobile app dev pipeline, they rely on tools and best practices to gain speed. Because our engineering leader Jeff Fairman previously ran software development for a top online brokerage, he understands the challenges of scaling security testing to meet current demands. After discovering the NowSecure automated testing platform, Jeff Fairman was so impressed with the tech that he joined the company to help DevOps and security teams build and release safe mobile apps. Listen this webinar to learn: + Why you need dynamic application security (DAST) testing to flag vulnerabilities in the post-build phase + The unique requirements, toolchain options and best practices for secure mobile DevOps + How to combine continuous daily testing with outsourced pen testing.]]>
Originally Presented December 6, 2018 As DevOps teams seek to accelerate the mobile app dev pipeline, they rely on tools and best practices to gain speed. Because our engineering leader Jeff Fairman previously ran software development for a top online brokerage, he understands the challenges of scaling security testing to meet current demands. After discovering the NowSecure automated testing platform, Jeff Fairman was so impressed with the tech that he joined the company to help DevOps and security teams build and release safe mobile apps. Listen this webinar to learn: + Why you need dynamic application security (DAST) testing to flag vulnerabilities in the post-build phase + The unique requirements, toolchain options and best practices for secure mobile DevOps + How to combine continuous daily testing with outsourced pen testing.]]> Fri, 07 Dec 2018 22:21:22 GMT /slideshow/jeffs-journey-best-practices-for-securing-mobile-app-devops/125331523 nowsecure@slideshare.net(nowsecure) Jeff's Journey: Best Practices for Securing Mobile App DevOps nowsecure Originally Presented December 6, 2018 As DevOps teams seek to accelerate the mobile app dev pipeline, they rely on tools and best practices to gain speed. Because our engineering leader Jeff Fairman previously ran software development for a top online brokerage, he understands the challenges of scaling security testing to meet current demands. After discovering the NowSecure automated testing platform, Jeff Fairman was so impressed with the tech that he joined the company to help DevOps and security teams build and release safe mobile apps. Listen this webinar to learn: + Why you need dynamic application security (DAST) testing to flag vulnerabilities in the post-build phase + The unique requirements, toolchain options and best practices for secure mobile DevOps + How to combine continuous daily testing with outsourced pen testing. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-bestpracticesforsecuringmobileappdevops-181207222122-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally Presented December 6, 2018 As DevOps teams seek to accelerate the mobile app dev pipeline, they rely on tools and best practices to gain speed. Because our engineering leader Jeff Fairman previously ran software development for a top online brokerage, he understands the challenges of scaling security testing to meet current demands. After discovering the NowSecure automated testing platform, Jeff Fairman was so impressed with the tech that he joined the company to help DevOps and security teams build and release safe mobile apps. Listen this webinar to learn: + Why you need dynamic application security (DAST) testing to flag vulnerabilities in the post-build phase + The unique requirements, toolchain options and best practices for secure mobile DevOps + How to combine continuous daily testing with outsourced pen testing.
Jeff's Journey: Best Practices for Securing Mobile App DevOps from NowSecure
]]> 413 2 https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-bestpracticesforsecuringmobileappdevops-181207222122-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 CASE STUDY - Ironclad Messaging & Secure App Dev for Regulated Industries /slideshow/case-study-ironclad-messaging-secure-app-dev-for-regulated-industries/119927670 webinar-casestudy-ironcladmessagingsecureappdevforregulatedindustries-181018195507
Originally Presenter October 18, 2018 Enterprise-grade ephemeral messaging provider Vaporstream knows firsthand that security needs to be built into the software development lifecycle rather than bolted on. Serving highly regulated industries such as federal government, energy, financial services and healthcare, Vaporstream’s leakproof communication platform provides the highest level of assurance that compliance professionals require. Vaporstream partners with NowSecure to test and certify its Android and iOS mobile messaging apps. This case study webinar covers how Vaporstream adheres to a rigorous secure app lifecycle in order to meet customer expectations for secure communications: + Designing a secure app architecture & development process + Incorporating security testing into the release cycle + Comprehensive penetration testing]]>
Originally Presenter October 18, 2018 Enterprise-grade ephemeral messaging provider Vaporstream knows firsthand that security needs to be built into the software development lifecycle rather than bolted on. Serving highly regulated industries such as federal government, energy, financial services and healthcare, Vaporstream’s leakproof communication platform provides the highest level of assurance that compliance professionals require. Vaporstream partners with NowSecure to test and certify its Android and iOS mobile messaging apps. This case study webinar covers how Vaporstream adheres to a rigorous secure app lifecycle in order to meet customer expectations for secure communications: + Designing a secure app architecture & development process + Incorporating security testing into the release cycle + Comprehensive penetration testing]]> Thu, 18 Oct 2018 19:55:07 GMT /slideshow/case-study-ironclad-messaging-secure-app-dev-for-regulated-industries/119927670 nowsecure@slideshare.net(nowsecure) CASE STUDY - Ironclad Messaging & Secure App Dev for Regulated Industries nowsecure Originally Presenter October 18, 2018 Enterprise-grade ephemeral messaging provider Vaporstream knows firsthand that security needs to be built into the software development lifecycle rather than bolted on. Serving highly regulated industries such as federal government, energy, financial services and healthcare, Vaporstream’s leakproof communication platform provides the highest level of assurance that compliance professionals require. Vaporstream partners with NowSecure to test and certify its Android and iOS mobile messaging apps. This case study webinar covers how Vaporstream adheres to a rigorous secure app lifecycle in order to meet customer expectations for secure communications: + Designing a secure app architecture & development process + Incorporating security testing into the release cycle + Comprehensive penetration testing <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/webinar-casestudy-ironcladmessagingsecureappdevforregulatedindustries-181018195507-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally Presenter October 18, 2018 Enterprise-grade ephemeral messaging provider Vaporstream knows firsthand that security needs to be built into the software development lifecycle rather than bolted on. Serving highly regulated industries such as federal government, energy, financial services and healthcare, Vaporstream’s leakproof communication platform provides the highest level of assurance that compliance professionals require. Vaporstream partners with NowSecure to test and certify its Android and iOS mobile messaging apps. This case study webinar covers how Vaporstream adheres to a rigorous secure app lifecycle in order to meet customer expectations for secure communications: + Designing a secure app architecture &amp; development process + Incorporating security testing into the release cycle + Comprehensive penetration testing
CASE STUDY - Ironclad Messaging & Secure App Dev for Regulated Industries from NowSecure
]]> 511 2 https://cdn.slidesharecdn.com/ss_thumbnails/webinar-casestudy-ironcladmessagingsecureappdevforregulatedindustries-181018195507-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 A Risk-Based Mobile App Security Testing Strategy /slideshow/a-riskbased-mobile-app-security-testing-strategy/116550805 wb2018-09-19risk-based-strategy-180925212537
Originally presented on September 19, 2018 Given the volume and velocity of mobile apps, there simply aren’t enough resources to test them all in the same manner. There has to be a better way. NowSecure introduces a new framework to help organizations craft a Risk-Based Mobile App Security Testing strategy. Watch the presentation here: https://www.nowsecure.com/webinars/a-risk-based-mobile-app-security-testing-strategy/]]>
Originally presented on September 19, 2018 Given the volume and velocity of mobile apps, there simply aren’t enough resources to test them all in the same manner. There has to be a better way. NowSecure introduces a new framework to help organizations craft a Risk-Based Mobile App Security Testing strategy. Watch the presentation here: https://www.nowsecure.com/webinars/a-risk-based-mobile-app-security-testing-strategy/]]> Tue, 25 Sep 2018 21:25:37 GMT /slideshow/a-riskbased-mobile-app-security-testing-strategy/116550805 nowsecure@slideshare.net(nowsecure) A Risk-Based Mobile App Security Testing Strategy nowsecure Originally presented on September 19, 2018 Given the volume and velocity of mobile apps, there simply aren’t enough resources to test them all in the same manner. There has to be a better way. NowSecure introduces a new framework to help organizations craft a Risk-Based Mobile App Security Testing strategy. Watch the presentation here: https://www.nowsecure.com/webinars/a-risk-based-mobile-app-security-testing-strategy/ <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/wb2018-09-19risk-based-strategy-180925212537-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented on September 19, 2018 Given the volume and velocity of mobile apps, there simply aren’t enough resources to test them all in the same manner. There has to be a better way. NowSecure introduces a new framework to help organizations craft a Risk-Based Mobile App Security Testing strategy. Watch the presentation here: https://www.nowsecure.com/webinars/a-risk-based-mobile-app-security-testing-strategy/
A Risk-Based Mobile App Security Testing Strategy from NowSecure
]]> 563 2 https://cdn.slidesharecdn.com/ss_thumbnails/wb2018-09-19risk-based-strategy-180925212537-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Android P Security Updates: What You Need to Know /slideshow/android-p-security-updates-what-you-need-to-know/111829484 webinar-androidpsecurityupdateswhatyouneedtoknow-180827221806
Originally presented August 23, 2018 2018 seems to be the year of privacy updates for both iOS and Android. In this webinar, Mobile Security Analyst Tony Ramirez takes a deeper look at security updates for Android including learnings from Android 8, what to expect for Android 9, and the implications for mobile app security.]]>
Originally presented August 23, 2018 2018 seems to be the year of privacy updates for both iOS and Android. In this webinar, Mobile Security Analyst Tony Ramirez takes a deeper look at security updates for Android including learnings from Android 8, what to expect for Android 9, and the implications for mobile app security.]]> Mon, 27 Aug 2018 22:18:06 GMT /slideshow/android-p-security-updates-what-you-need-to-know/111829484 nowsecure@slideshare.net(nowsecure) Android P Security Updates: What You Need to Know nowsecure Originally presented August 23, 2018 2018 seems to be the year of privacy updates for both iOS and Android. In this webinar, Mobile Security Analyst Tony Ramirez takes a deeper look at security updates for Android including learnings from Android 8, what to expect for Android 9, and the implications for mobile app security. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/webinar-androidpsecurityupdateswhatyouneedtoknow-180827221806-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented August 23, 2018 2018 seems to be the year of privacy updates for both iOS and Android. In this webinar, Mobile Security Analyst Tony Ramirez takes a deeper look at security updates for Android including learnings from Android 8, what to expect for Android 9, and the implications for mobile app security.
Android P Security Updates: What You Need to Know from NowSecure
]]> 592 5 https://cdn.slidesharecdn.com/ss_thumbnails/webinar-androidpsecurityupdateswhatyouneedtoknow-180827221806-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 iOS 12 Preview - What You Need To Know /slideshow/ios-12-preview-what-you-need-to-know/102301843 webinar-ios12securityupdateswhatyouneedtoknow-180613141904
Originally presented on June 12, 2018 Much of the improvements for iOS 12 focused on privacy and reliability. What prompted these changes and how will it affect the path forward? In this discussion, Tony Ramirez, Mobile Security Analyst, shares about the following: + Learnings & remediations from iOS 11 + Predictions coming out of WWDC + How we see the newest software update, iOS 12, affecting mobile app security testing]]>
Originally presented on June 12, 2018 Much of the improvements for iOS 12 focused on privacy and reliability. What prompted these changes and how will it affect the path forward? In this discussion, Tony Ramirez, Mobile Security Analyst, shares about the following: + Learnings & remediations from iOS 11 + Predictions coming out of WWDC + How we see the newest software update, iOS 12, affecting mobile app security testing]]> Wed, 13 Jun 2018 14:19:04 GMT /slideshow/ios-12-preview-what-you-need-to-know/102301843 nowsecure@slideshare.net(nowsecure) iOS 12 Preview - What You Need To Know nowsecure Originally presented on June 12, 2018 Much of the improvements for iOS 12 focused on privacy and reliability. What prompted these changes and how will it affect the path forward? In this discussion, Tony Ramirez, Mobile Security Analyst, shares about the following: + Learnings & remediations from iOS 11 + Predictions coming out of WWDC + How we see the newest software update, iOS 12, affecting mobile app security testing <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/webinar-ios12securityupdateswhatyouneedtoknow-180613141904-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented on June 12, 2018 Much of the improvements for iOS 12 focused on privacy and reliability. What prompted these changes and how will it affect the path forward? In this discussion, Tony Ramirez, Mobile Security Analyst, shares about the following: + Learnings &amp; remediations from iOS 11 + Predictions coming out of WWDC + How we see the newest software update, iOS 12, affecting mobile app security testing
iOS 12 Preview - What You Need To Know from NowSecure
]]> 660 2 https://cdn.slidesharecdn.com/ss_thumbnails/webinar-ios12securityupdateswhatyouneedtoknow-180613141904-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 5 Tips for Agile Mobile App Security Testing /slideshow/5-tips-for-agile-mobile-app-security-testing/91454377 slideshare-5tipsforagilemobileappsecuritytesting-180321182055
Originally Presented March 21, 2018 Most mobile app penetration tests or vulnerability assessments take anywhere from a couple of days to two weeks to deliver because of the manual approaches, brittle open source stacks in homegrown testing rigs and legacy application security testing (AST) tools. The shift to agile development common in mobile app development teams has left appsec testing behind. New mobile app builds are pushed daily, weekly or monthly, and appsec testing teams struggle to keep up. Each new build brings new code, including 3rd-party libraries, and with that code comes new potential vulnerabilities. Application security & testing teams - this one’s for you. If you’re looking for ways to join the agile approach and keep pace with the speed of your development team’s CI/CD pipeline, take stock of these 5 tips for mobile appsec testing and integrate them into your company’s workflow.]]>
Originally Presented March 21, 2018 Most mobile app penetration tests or vulnerability assessments take anywhere from a couple of days to two weeks to deliver because of the manual approaches, brittle open source stacks in homegrown testing rigs and legacy application security testing (AST) tools. The shift to agile development common in mobile app development teams has left appsec testing behind. New mobile app builds are pushed daily, weekly or monthly, and appsec testing teams struggle to keep up. Each new build brings new code, including 3rd-party libraries, and with that code comes new potential vulnerabilities. Application security & testing teams - this one’s for you. If you’re looking for ways to join the agile approach and keep pace with the speed of your development team’s CI/CD pipeline, take stock of these 5 tips for mobile appsec testing and integrate them into your company’s workflow.]]> Wed, 21 Mar 2018 18:20:55 GMT /slideshow/5-tips-for-agile-mobile-app-security-testing/91454377 nowsecure@slideshare.net(nowsecure) 5 Tips for Agile Mobile App Security Testing nowsecure Originally Presented March 21, 2018 Most mobile app penetration tests or vulnerability assessments take anywhere from a couple of days to two weeks to deliver because of the manual approaches, brittle open source stacks in homegrown testing rigs and legacy application security testing (AST) tools. The shift to agile development common in mobile app development teams has left appsec testing behind. New mobile app builds are pushed daily, weekly or monthly, and appsec testing teams struggle to keep up. Each new build brings new code, including 3rd-party libraries, and with that code comes new potential vulnerabilities. Application security & testing teams - this one’s for you. If you’re looking for ways to join the agile approach and keep pace with the speed of your development team’s CI/CD pipeline, take stock of these 5 tips for mobile appsec testing and integrate them into your company’s workflow. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-5tipsforagilemobileappsecuritytesting-180321182055-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally Presented March 21, 2018 Most mobile app penetration tests or vulnerability assessments take anywhere from a couple of days to two weeks to deliver because of the manual approaches, brittle open source stacks in homegrown testing rigs and legacy application security testing (AST) tools. The shift to agile development common in mobile app development teams has left appsec testing behind. New mobile app builds are pushed daily, weekly or monthly, and appsec testing teams struggle to keep up. Each new build brings new code, including 3rd-party libraries, and with that code comes new potential vulnerabilities. Application security &amp; testing teams - this one’s for you. If you’re looking for ways to join the agile approach and keep pace with the speed of your development team’s CI/CD pipeline, take stock of these 5 tips for mobile appsec testing and integrate them into your company’s workflow.
5 Tips for Agile Mobile App Security Testing from NowSecure
]]> 1135 4 https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-5tipsforagilemobileappsecuritytesting-180321182055-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Top OSS for Mobile AppSec Testing: The Latest on R2 and FRIDA /slideshow/top-oss-for-mobile-appsec-testing-the-latest-on-r2-and-frida-88531201/88531201 slidesharetopossformobileappsectestinglatestonr2andfrida1-180221184554
From the creators behind top mobile tools R2 and FRIDA, get the inside scoop on the R2 and FRIDA OSS projects. Led by NowSecure Research Team including David Weinstein, Ole André and Pancake (Sergi Àlvarez), this webinar speaks to our favorite mobile AST OSS projects. Peek behind the curtain on these tools, check out on their latest updates, and learn about potential future enhancements. ]]>
From the creators behind top mobile tools R2 and FRIDA, get the inside scoop on the R2 and FRIDA OSS projects. Led by NowSecure Research Team including David Weinstein, Ole André and Pancake (Sergi Àlvarez), this webinar speaks to our favorite mobile AST OSS projects. Peek behind the curtain on these tools, check out on their latest updates, and learn about potential future enhancements. ]]> Wed, 21 Feb 2018 18:45:54 GMT /slideshow/top-oss-for-mobile-appsec-testing-the-latest-on-r2-and-frida-88531201/88531201 nowsecure@slideshare.net(nowsecure) Top OSS for Mobile AppSec Testing: The Latest on R2 and FRIDA nowsecure From the creators behind top mobile tools R2 and FRIDA, get the inside scoop on the R2 and FRIDA OSS projects. Led by NowSecure Research Team including David Weinstein, Ole André and Pancake (Sergi Àlvarez), this webinar speaks to our favorite mobile AST OSS projects. Peek behind the curtain on these tools, check out on their latest updates, and learn about potential future enhancements. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/slidesharetopossformobileappsectestinglatestonr2andfrida1-180221184554-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> From the creators behind top mobile tools R2 and FRIDA, get the inside scoop on the R2 and FRIDA OSS projects. Led by NowSecure Research Team including David Weinstein, Ole André and Pancake (Sergi Àlvarez), this webinar speaks to our favorite mobile AST OSS projects. Peek behind the curtain on these tools, check out on their latest updates, and learn about potential future enhancements.
Top OSS for Mobile AppSec Testing: The Latest on R2 and FRIDA from NowSecure
]]> 1036 7 https://cdn.slidesharecdn.com/ss_thumbnails/slidesharetopossformobileappsectestinglatestonr2andfrida1-180221184554-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 85% of App Store Apps Fail OWASP Mobile Top 10: Are you exposed? /slideshow/85-of-app-store-apps-fail-owasp-mobile-top-10-are-you-exposed/86647726 slideshare85ofappstoreappsfailowaspmobiletop10areyouexposed-180124175203
Originally presented on January 23, 2018 A comprehensive analysis of iOS and Android apps found that a staggering 85% of those apps fail one or more of the OWASP Mobile Top 10 criteria. Given that the average mobile device has over 89 mobile apps on it, what are the odds your employees have one or more of the apps and what’s the real risk to your business? Mobile apps power productivity in the modern business; don’t let a few bad apps bring it down.]]>
Originally presented on January 23, 2018 A comprehensive analysis of iOS and Android apps found that a staggering 85% of those apps fail one or more of the OWASP Mobile Top 10 criteria. Given that the average mobile device has over 89 mobile apps on it, what are the odds your employees have one or more of the apps and what’s the real risk to your business? Mobile apps power productivity in the modern business; don’t let a few bad apps bring it down.]]> Wed, 24 Jan 2018 17:52:03 GMT /slideshow/85-of-app-store-apps-fail-owasp-mobile-top-10-are-you-exposed/86647726 nowsecure@slideshare.net(nowsecure) 85% of App Store Apps Fail OWASP Mobile Top 10: Are you exposed? nowsecure Originally presented on January 23, 2018 A comprehensive analysis of iOS and Android apps found that a staggering 85% of those apps fail one or more of the OWASP Mobile Top 10 criteria. Given that the average mobile device has over 89 mobile apps on it, what are the odds your employees have one or more of the apps and what’s the real risk to your business? Mobile apps power productivity in the modern business; don’t let a few bad apps bring it down. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/slideshare85ofappstoreappsfailowaspmobiletop10areyouexposed-180124175203-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented on January 23, 2018 A comprehensive analysis of iOS and Android apps found that a staggering 85% of those apps fail one or more of the OWASP Mobile Top 10 criteria. Given that the average mobile device has over 89 mobile apps on it, what are the odds your employees have one or more of the apps and what’s the real risk to your business? Mobile apps power productivity in the modern business; don’t let a few bad apps bring it down.
85% of App Store Apps Fail OWASP Mobile Top 10: Are you exposed? from NowSecure
]]> 1701 4 https://cdn.slidesharecdn.com/ss_thumbnails/slideshare85ofappstoreappsfailowaspmobiletop10areyouexposed-180124175203-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 5 Mobile App Security MUST-DOs in 2018 /slideshow/5-mobile-app-security-mustdos-in-2018/83436358 webinar2018mobileappsecmustdos-171205230815
Originally presented on 12/5/2017 To close out the 2017 webinar season, our mobile security expert panel will review the top mobile threats of 2017 (e.g., Cloudbleed, Bootstomp, Broadpwn, and more) and then debate what’s next in mobile app security and mobile app security testing for 2018. See the slides from this spirited discussion of the security ramifications of the new iPhone X, iOS 11, Android 8, the latest innovations in the mobile app security testing, and more. Compare your mobile app security and mobile app security testing initiatives with what our experts say should be your top priorities in 2018.]]>
Originally presented on 12/5/2017 To close out the 2017 webinar season, our mobile security expert panel will review the top mobile threats of 2017 (e.g., Cloudbleed, Bootstomp, Broadpwn, and more) and then debate what’s next in mobile app security and mobile app security testing for 2018. See the slides from this spirited discussion of the security ramifications of the new iPhone X, iOS 11, Android 8, the latest innovations in the mobile app security testing, and more. Compare your mobile app security and mobile app security testing initiatives with what our experts say should be your top priorities in 2018.]]> Tue, 05 Dec 2017 23:08:15 GMT /slideshow/5-mobile-app-security-mustdos-in-2018/83436358 nowsecure@slideshare.net(nowsecure) 5 Mobile App Security MUST-DOs in 2018 nowsecure Originally presented on 12/5/2017 To close out the 2017 webinar season, our mobile security expert panel will review the top mobile threats of 2017 (e.g., Cloudbleed, Bootstomp, Broadpwn, and more) and then debate what’s next in mobile app security and mobile app security testing for 2018. See the slides from this spirited discussion of the security ramifications of the new iPhone X, iOS 11, Android 8, the latest innovations in the mobile app security testing, and more. Compare your mobile app security and mobile app security testing initiatives with what our experts say should be your top priorities in 2018. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/webinar2018mobileappsecmustdos-171205230815-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented on 12/5/2017 To close out the 2017 webinar season, our mobile security expert panel will review the top mobile threats of 2017 (e.g., Cloudbleed, Bootstomp, Broadpwn, and more) and then debate what’s next in mobile app security and mobile app security testing for 2018. See the slides from this spirited discussion of the security ramifications of the new iPhone X, iOS 11, Android 8, the latest innovations in the mobile app security testing, and more. Compare your mobile app security and mobile app security testing initiatives with what our experts say should be your top priorities in 2018.
5 Mobile App Security MUST-DOs in 2018 from NowSecure
]]> 1173 3 https://cdn.slidesharecdn.com/ss_thumbnails/webinar2018mobileappsecmustdos-171205230815-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Mobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App Risk /nowsecure/mobile-apps-connected-healthcare-managing-3rdparty-mobile-app-risk-83013079 copyofnh-isac-andrewmobileappsandconnectedhealthcare-171129233443
Originally presented on 11/30/2017 at the 2017 NH-ISAC Third Party Risk Governance Summit]]>
Originally presented on 11/30/2017 at the 2017 NH-ISAC Third Party Risk Governance Summit]]> Wed, 29 Nov 2017 23:34:43 GMT /nowsecure/mobile-apps-connected-healthcare-managing-3rdparty-mobile-app-risk-83013079 nowsecure@slideshare.net(nowsecure) Mobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App Risk nowsecure Originally presented on 11/30/2017 at the 2017 NH-ISAC Third Party Risk Governance Summit <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/copyofnh-isac-andrewmobileappsandconnectedhealthcare-171129233443-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Originally presented on 11/30/2017 at the 2017 NH-ISAC Third Party Risk Governance Summit
Mobile Apps & Connected Healthcare: Managing 3rd-Party Mobile App Risk from NowSecure
]]> 165 1 https://cdn.slidesharecdn.com/ss_thumbnails/copyofnh-isac-andrewmobileappsandconnectedhealthcare-171129233443-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 What attackers know about your mobile apps that you don’t: Banking & FinTech /slideshow/what-attackers-know-about-your-mobile-apps-that-you-dont-banking-fintech/81200977 wb2017-10-24attack-mobile-apps-banking-fintech-171025160718
Our threat research team spends every waking moment reverse-engineering and cracking mobile apps and devices to help organizations reduce mobile risk. Originally presented on October 24, 2017, mobile security expert and NowSecure founder Andrew Hoog explains the attacker’s point-of-view, what attackers are looking for in mobile banking or financial services apps, and what makes your mobile app an appetizing target. He then provides tips for deploying a mobile app security testing program to ensure you proactively plug security holes, squash privacy leaks, and fill compliance gaps in your mobile apps.]]>
Our threat research team spends every waking moment reverse-engineering and cracking mobile apps and devices to help organizations reduce mobile risk. Originally presented on October 24, 2017, mobile security expert and NowSecure founder Andrew Hoog explains the attacker’s point-of-view, what attackers are looking for in mobile banking or financial services apps, and what makes your mobile app an appetizing target. He then provides tips for deploying a mobile app security testing program to ensure you proactively plug security holes, squash privacy leaks, and fill compliance gaps in your mobile apps.]]> Wed, 25 Oct 2017 16:07:18 GMT /slideshow/what-attackers-know-about-your-mobile-apps-that-you-dont-banking-fintech/81200977 nowsecure@slideshare.net(nowsecure) What attackers know about your mobile apps that you don’t: Banking & FinTech nowsecure Our threat research team spends every waking moment reverse-engineering and cracking mobile apps and devices to help organizations reduce mobile risk. Originally presented on October 24, 2017, mobile security expert and NowSecure founder Andrew Hoog explains the attacker’s point-of-view, what attackers are looking for in mobile banking or financial services apps, and what makes your mobile app an appetizing target. He then provides tips for deploying a mobile app security testing program to ensure you proactively plug security holes, squash privacy leaks, and fill compliance gaps in your mobile apps. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/wb2017-10-24attack-mobile-apps-banking-fintech-171025160718-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Our threat research team spends every waking moment reverse-engineering and cracking mobile apps and devices to help organizations reduce mobile risk. Originally presented on October 24, 2017, mobile security expert and NowSecure founder Andrew Hoog explains the attacker’s point-of-view, what attackers are looking for in mobile banking or financial services apps, and what makes your mobile app an appetizing target. He then provides tips for deploying a mobile app security testing program to ensure you proactively plug security holes, squash privacy leaks, and fill compliance gaps in your mobile apps.
What attackers know about your mobile apps that you don’t: Banking & FinTech from NowSecure
]]> 865 4 https://cdn.slidesharecdn.com/ss_thumbnails/wb2017-10-24attack-mobile-apps-banking-fintech-171025160718-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Solving for Compliance: Mobile app security for banking and financial services /slideshow/solving-for-compliance-mobile-app-security-for-banking-and-financial-services/79061027 compliance-170822165957
Mobile apps fall in scope for a number of regulatory requirements that govern the banking and financial services industries, such as: guidelines from the Federal Financial Institutions Examination Council (FFIEC), the Gramm–Leach–Bliley Act (GLBA), New York State cybersecurity requirements for financial services companies, the Payment Card Industry Data Security Standard (PCI DSS), the Sarbanes-Oxley Act, and more. Luckily, a repeatable mobile app security assessment program and standardized reporting go a long way in both achieving compliance objectives and securing mobile apps and data. Originally presented on August 22, 2017, NowSecure Security Solutions Engineer Brian Lawrence explains: -- How and where exactly mobile apps fall in scope for various compliance regimes -- Mobile app security issues financial institutions must identify and fix for compliance purposes -- How assessment reports can be used to demonstrate due diligence]]>
Mobile apps fall in scope for a number of regulatory requirements that govern the banking and financial services industries, such as: guidelines from the Federal Financial Institutions Examination Council (FFIEC), the Gramm–Leach–Bliley Act (GLBA), New York State cybersecurity requirements for financial services companies, the Payment Card Industry Data Security Standard (PCI DSS), the Sarbanes-Oxley Act, and more. Luckily, a repeatable mobile app security assessment program and standardized reporting go a long way in both achieving compliance objectives and securing mobile apps and data. Originally presented on August 22, 2017, NowSecure Security Solutions Engineer Brian Lawrence explains: -- How and where exactly mobile apps fall in scope for various compliance regimes -- Mobile app security issues financial institutions must identify and fix for compliance purposes -- How assessment reports can be used to demonstrate due diligence]]> Tue, 22 Aug 2017 16:59:56 GMT /slideshow/solving-for-compliance-mobile-app-security-for-banking-and-financial-services/79061027 nowsecure@slideshare.net(nowsecure) Solving for Compliance: Mobile app security for banking and financial services nowsecure Mobile apps fall in scope for a number of regulatory requirements that govern the banking and financial services industries, such as: guidelines from the Federal Financial Institutions Examination Council (FFIEC), the Gramm–Leach–Bliley Act (GLBA), New York State cybersecurity requirements for financial services companies, the Payment Card Industry Data Security Standard (PCI DSS), the Sarbanes-Oxley Act, and more. Luckily, a repeatable mobile app security assessment program and standardized reporting go a long way in both achieving compliance objectives and securing mobile apps and data. Originally presented on August 22, 2017, NowSecure Security Solutions Engineer Brian Lawrence explains: -- How and where exactly mobile apps fall in scope for various compliance regimes -- Mobile app security issues financial institutions must identify and fix for compliance purposes -- How assessment reports can be used to demonstrate due diligence <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/compliance-170822165957-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> Mobile apps fall in scope for a number of regulatory requirements that govern the banking and financial services industries, such as: guidelines from the Federal Financial Institutions Examination Council (FFIEC), the Gramm–Leach–Bliley Act (GLBA), New York State cybersecurity requirements for financial services companies, the Payment Card Industry Data Security Standard (PCI DSS), the Sarbanes-Oxley Act, and more. Luckily, a repeatable mobile app security assessment program and standardized reporting go a long way in both achieving compliance objectives and securing mobile apps and data. Originally presented on August 22, 2017, NowSecure Security Solutions Engineer Brian Lawrence explains: -- How and where exactly mobile apps fall in scope for various compliance regimes -- Mobile app security issues financial institutions must identify and fix for compliance purposes -- How assessment reports can be used to demonstrate due diligence
Solving for Compliance: Mobile app security for banking and financial services from NowSecure
]]> 1787 11 https://cdn.slidesharecdn.com/ss_thumbnails/compliance-170822165957-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 Leaky Mobile Apps: What You Need to Know /slideshow/leaky-mobile-apps-what-you-need-to-know/78101447 owasp-nowsecure-leaky-mobile-apps-170720210643
The amount of data collected by mobile devices and apps is shocking, and vulnerable mobile apps expose that data to compromise. In our static and dynamic analysis of hundreds-of-thousands of mobile apps, we found that 25 percent of them harbor at least one high-risk vulnerability such as collecting/transmitting location data, credentials, and more in cleartext. Mobile data may only be as secure as the weakest app on someone’s device. Mobile app developers need to protect the users of their apps by building high quality, secure apps. This presentation covers the most common mobile app vulnerabilities (including a real-world demonstration), how to identify those vulnerabilities, and what to do to remediate them. ºÝºÝߣs from NowSecure Senior Solutions Engineer Jon Porter's talk at the OWASP Denver Chapter's July 2017 meeting. ]]>
The amount of data collected by mobile devices and apps is shocking, and vulnerable mobile apps expose that data to compromise. In our static and dynamic analysis of hundreds-of-thousands of mobile apps, we found that 25 percent of them harbor at least one high-risk vulnerability such as collecting/transmitting location data, credentials, and more in cleartext. Mobile data may only be as secure as the weakest app on someone’s device. Mobile app developers need to protect the users of their apps by building high quality, secure apps. This presentation covers the most common mobile app vulnerabilities (including a real-world demonstration), how to identify those vulnerabilities, and what to do to remediate them. ºÝºÝߣs from NowSecure Senior Solutions Engineer Jon Porter's talk at the OWASP Denver Chapter's July 2017 meeting. ]]> Thu, 20 Jul 2017 21:06:42 GMT /slideshow/leaky-mobile-apps-what-you-need-to-know/78101447 nowsecure@slideshare.net(nowsecure) Leaky Mobile Apps: What You Need to Know nowsecure The amount of data collected by mobile devices and apps is shocking, and vulnerable mobile apps expose that data to compromise. In our static and dynamic analysis of hundreds-of-thousands of mobile apps, we found that 25 percent of them harbor at least one high-risk vulnerability such as collecting/transmitting location data, credentials, and more in cleartext. Mobile data may only be as secure as the weakest app on someone’s device. Mobile app developers need to protect the users of their apps by building high quality, secure apps. This presentation covers the most common mobile app vulnerabilities (including a real-world demonstration), how to identify those vulnerabilities, and what to do to remediate them. ºÝºÝߣs from NowSecure Senior Solutions Engineer Jon Porter's talk at the OWASP Denver Chapter's July 2017 meeting. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/owasp-nowsecure-leaky-mobile-apps-170720210643-thumbnail.jpg?width=120&amp;height=120&amp;fit=bounds" /><br> The amount of data collected by mobile devices and apps is shocking, and vulnerable mobile apps expose that data to compromise. In our static and dynamic analysis of hundreds-of-thousands of mobile apps, we found that 25 percent of them harbor at least one high-risk vulnerability such as collecting/transmitting location data, credentials, and more in cleartext. Mobile data may only be as secure as the weakest app on someone’s device. Mobile app developers need to protect the users of their apps by building high quality, secure apps. This presentation covers the most common mobile app vulnerabilities (including a real-world demonstration), how to identify those vulnerabilities, and what to do to remediate them. ºÝºÝߣs from NowSecure Senior Solutions Engineer Jon Porter&#39;s talk at the OWASP Denver Chapter&#39;s July 2017 meeting.
Leaky Mobile Apps: What You Need to Know from NowSecure
]]> 2625 11 https://cdn.slidesharecdn.com/ss_thumbnails/owasp-nowsecure-leaky-mobile-apps-170720210643-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post http://activitystrea.ms/schema/1.0/posted 0 https://cdn.slidesharecdn.com/profile-photo-nowsecure-48x48.jpg?cb=1607359184 NowSecure: The Mobile Security Company www.nowsecure.com https://cdn.slidesharecdn.com/ss_thumbnails/virseccon-radare2forios-200406172002-thumbnail.jpg?width=320&height=320&fit=bounds slideshow/ios-recon-with-radare2/231507792 iOS recon with Radare2 https://cdn.slidesharecdn.com/ss_thumbnails/webinar-fromtangledmesstoorganizedflowamobiledevsecopsreferencearchitecture3-200319185939-thumbnail.jpg?width=320&height=320&fit=bounds nowsecure/from-tangled-mess-to-organized-flow-a-mobile-devsecops-reference-architecture From Tangled Mess to O... https://cdn.slidesharecdn.com/ss_thumbnails/slideshare-comingsoonandroidqios13privacyenhancements-190719172641-thumbnail.jpg?width=320&height=320&fit=bounds slideshow/android-q-ios-13-privacy-enhancements/156505261 Android Q &amp; iOS 13 Pri...