David Stewart

What is SafetyNet and How Does it Improve Android Security?

November 21, 2022

The Google SafetyNet API is a service for verifying the trustworthiness of the Android operating system on a given device mobile device. In this article we will look at the security it brings and how that will change as it is replaced by Google’s Play Integrity API. Read Full Story

Securing Mobile Gambling Platforms

November 8, 2022

Gambling has come a long way since the days of visiting a bricks and mortar outlet and filling in some paperwork to bet on a small set of events and outcomes. Recent years have seen dramatic changes in this market. In this article we’ll look at how it has evolved and what the security implications are. Read Full Story

How Do I Protect My Flutter App?

October 10, 2022

Google’s open source Flutter has quickly become one of the most popular development toolkits for building cross platform mobile applications. In this article we will examine what security is built-in to Flutter mobile apps and recommend additional layers which you may wish to consider for your mobile projects. Read Full Story

The False Economics of Agentless Security for Mobile

September 29, 2022

Editor's note: This post was originally published in September 2022 in IDG TECH(talk). Agentless security for mobile is an approach that promises businesses protection from attack without having to add any security related software into their mobile apps. In this article we will look at the pros and cons of adopting this approach compared to alternative mechanisms. Read Full Story

Securing Electric Vehicle Charging Platforms

September 22, 2022

Spikes in the prices of fossil fuels have provided yet another incentive for consumers to move towards electric vehicles (EVs). Alongside that trend is the pressing requirement to have a charging infrastructure which provides enough capacity to satisfy this need. In this article we will explore how EV charging platforms are being architected and deployed while answering a question seldom asked - what security holes are being opened? Read Full Story

How Do I Make My API Gateway Secure?

September 21, 2022

An API Gateway is a tool that manages APIs and API traffic. Essentially it sits between remote clients (servers, browsers, mobile apps) and backend services and is responsible for routing API requests in either direction to the right source. It provides a degree of protection out of the box and in this article we’ll examine how much security you’ll get from your API Gateway and what else might be needed to secure your data and services. Read Full Story

How Can Bots Be Prevented?

September 20, 2022

Bad bots—computer programs that mimic human behavior—are a growing threat to businesses, costing them billions of dollars yearly in fraud and data theft. What can you do about it? Read Full Story

What is Bot Protection?

September 16, 2022

If you're a mobile app developer, chances are you've heard of bot protection. Bots are programs that run automated tasks over the internet. Although criminals can use them for malicious purposes, such as spamming or denial of service attacks, they can also be used for legitimate tasks, such as web crawling and data collection. Read Full Story

Is an API Gateway Secure?

September 14, 2022

An API Gateway is a tool that manages APIs and API traffic. Essentially it sits between remote clients (servers, browsers, mobile apps) and backend services and is responsible for routing API requests in either direction to the right source. But how much security should you expect from an API Gateway? Read Full Story

What is a Bot Manager?

September 13, 2022

In the world of mobile app development, it's essential to be aware of the latest security threats. Unfortunately, bot attacks are among the most common and dangerous security threats. For example, the Chamois botnet once infected over 20 million Android devices - serving malicious ads and directing users to premium SMS scams. Read Full Story