Android multiuser model architecture and related security threats

I have recently bumped into a very interesting research article called "A Systematic Security Evaluation of Android’s Multi-User Framework" and want to leave here a digest and some of my analysis in the aspect of Enterprise use. I recommend reading the paper for more details, it's only 10 pages. The more I learn of Android,... Continue Reading →

Does HTTPS really provide 100% privacy?

It all started with this blog mentioning HTTPS MITM possibilities. Quote: Do you really believe you have end to end secure connection with your bank when you access your account from the office? Think again. This got me into some research, especially after a few days later an announcement from CloudFlare came out. Here are... Continue Reading →

Wi-Fi Market Riddles: “Cheap” vendors are not that cheap

Ok, how many times have you seen small deployments based on T2/T3 vendors such as D-Link, Ubiquiti, Mikrotik or EnGenius? In most cases people choose them for simple installation/configuration (RF Design? What is RF design?) and attractive prices ...until recently, that is. Here's a couple of announcements from my RSS feed (from a site I... Continue Reading →