Click-to-Call – a new nifty feature for Android and Chrome

I discussed this by accident today, it's pretty simple and cool. When you click a telephone number of a webpage in Chrome (tel:XXX URL) on PC, you will get a popup offering you to call from your phone. The picture below explains it all, using VMware's phone number in Germany. You get a toast notification... Continue Reading →

Android Q Enterprise Features for EMM Admin

This is a brief analysis on the upcoming Android Enterprise Features in Android Q. Read the full notes here. Google has a habit of silently updating those documents, so I expect to update this post once subsequent iterations of Beta are released. The below is my sole opinion, and I welcome hearing yours. NB: it... Continue Reading →

Does Android P private DNS really contribute to privacy? Or to Enterprise control?

Private DNS is a new feature in Android P, which allows you to globally override the DNS settings (received from your carrier, hotspot provider etc.). This means that the said carrier's or provider's DNS servers will not be able to log your browsing habits. Read more here (Android Police). This looks like privacy, but isn't... Continue Reading →

Bypassing Android security via backups (PSK recovery)

In my recent Android trainings and the Android security talk I gave at AppForum 2014 I was asked to provide a sort of a demo that can be easily replicated to explain the importance of maintaining a proper security posture. So I created a script that 'recovers' PSKs from the device and displays them. Before... Continue Reading →

Android multiuser model architecture and related security threats

I have recently bumped into a very interesting research article called "A Systematic Security Evaluation of Android’s Multi-User Framework" and want to leave here a digest and some of my analysis in the aspect of Enterprise use. I recommend reading the paper for more details, it's only 10 pages. The more I learn of Android,... Continue Reading →

Android training (Workshop)

Wondering why there are no Wi-Fi posts? I was busy developng a special Android training! (see my disclaimer page for any questions). Android is currently perceived as the next enterprise mobile OS, thanks to broad user acceptance and source availability. With major vendors like Motorola and Honeywell releasing Android-based products and slowing (if not terminating)... Continue Reading →