I recently did a webinar on mobile application security where we looked at some statistics pulled from a subset of our mobile security assessments to look at a couple of important issues:
- Where do the most serious vulnerabilities exist in mobile applications (mobile code, enterprise web services, or 3rd party web services)?
- What types of analysis find the most serious vulnerabilities (static versus dynamic, automated versus manual)?
The goal of this analysis is to help organizations craft mobile application assessment programs that can help identify the most serious vulnerabilities while acknowledging that security budgets are finite. You can see a recording of the webinar here:
And the slides are available online as well:
Contact us if you’re interested in crafting a comprehensive mobile application security testing program.