Anthony G Ricco

Featured in: Favicon

csoonline.com Favicon

futuremedicine.com

Articles

The Importance of Jailbreaks for iOS Security Work

Nov 7, 2023 | uscybersecurity.net | Patrick Brzozowski |Anthony G Ricco

The realm of iOS security research has seen significant advancements in recent years. With each new iOS release, Apple tightens its grip on the operating system’s security. As a result, public jailbreaks have become increasingly rare. However, jailbreaks still play a critical role in iOS security work. Jailbreaks are essential to iOS security work.
Transforming Mobile App Development and Security for the Enterprise

Jul 25, 2023 | uscybersecurity.net | Lauren Abshire |Anthony G Ricco

In today’s rapidly evolving digital landscape, smart devices have become the new battleground for cybersecurity. The vulnerabilities within mobile devices are continually exploited by attackers and malware, making it crucial for enterprises to prioritize security practices from the early stages of the software development process.
Mobile DevSecOps: Left Shifting Mobile Security

Jul 19, 2023 | uscybersecurity.net | Lauren Abshire |Anthony G Ricco

In today’s fast-paced digital world, organizations can no longer afford to overlook the importance of strong security measures when developing software. With the increasing frequency of cyber-attacks targeting businesses of all sizes and industries, having a robust cybersecurity posture has become a necessity. To achieve this, companies must prioritize product-specific security and integrate it with their engineering team’s culture, adopting the DevSecOps approach.
Shifting security left: DevSecOps meets virtualization

Jun 28, 2023 | csoonline.com | Anthony G Ricco

The practice of shifting security left has its roots in DevOps, an agile methodology designed to reduce the time it takes for software projects to go from concept to production. By taking a proactive approach to secure development, organizations can reduce the risk of cyber attacks and system outages due to malicious actors or accidental errors. As such, shifting security left has become an increasingly important part of modern software development.
Investigating iOS Phishing Using Virtualization Technology

Jun 8, 2023 | uscybersecurity.net | Lauren Abshire |Anthony G Ricco

Virtualization became a powerful tool in agile development due to its versatility and capability to deliver solutions quickly. It is no surprise then that security engineers are also turning to this technology, like Corellium, in order to investigate phishing attacks against iOS devices.
Unveiling the World of Mobile Malware and Threat Research: Tools, Tactics, and Procedures

May 30, 2023 | uscybersecurity.net | Lauren Abshire |Anthony G Ricco

As mobile devices become an integral part of our daily lives, the importance of understanding and combating mobile malware and threats becomes increasingly critical. Mobile malware poses a significant risk to users, with the potential to compromise sensitive data, invade privacy, and disrupt normal device functionality.
Mobile App Reverse Engineering: Tools, Tactics, and Procedures

May 23, 2023 | uscybersecurity.net | Lauren Abshire |Anthony G Ricco

Mobile app reverse engineering is a process that involves dissecting and analyzing the internal workings of a mobile application to gain insights into its structure, functionality, and security vulnerabilities. While reverse engineering can serve legitimate purposes, such as security audits and app analysis, it is crucial to approach it ethically, respecting intellectual property rights and user privacy.
Virtualization is Transforming Mobile Security Research

Apr 17, 2023 | uscybersecurity.net | Lauren Abshire |Anthony G Ricco

The Internet of Things (IoT) is taking mobile security research by storm. According to market research firm Statista, the number of IoT devices worldwide is forecast to include more than 29 billion IoT devices by 2030.
3 Mobile Security Testing Challenges and How to Overcome Them

Apr 10, 2023 | uscybersecurity.net | Patrick Brzozowski |Anthony G Ricco

Mobile security testing, as any pentester or vulnerability researcher can tell you, is full of time-consuming and tedious tasks, like sourcing and jailbreaking physical devices. But time and headaches aren’t the only issue. Security teams have to test on physical devices because alternatives, like emulators, are unreliable or simply don’t have the necessary access and capabilities. For example, there are no emulators for iOS — a major shortcoming.