Approov Blog

We got together with our friends at Quokka recently to talk about securing the mobile application software development lifecycle and why it's important to get a dynamic feedback loop going between the security approaches you use at different stages of the life cycle. This blog presents some of the highlights of the recent webinar. Read Full Story

An Intellyx Analyst Guide for Approov by Jason Bloomberg and Eric Newcomer, Intellyx. Read Full Story

Approov publishes a New Whitepaper on Apple, Google and Huawei Mobile App Security We have been quite vocal about the shortcomings of the proprietary approaches to mobile app security from Apple, Google and Huawei. See these previous blogs: Read Full Story

Here at Appoov, we were wondering why there has been so little discussion about applying the principles of Zero Trust specifically to mobile apps when this is a concept which has become quite mainstream in enterprise security. Read Full Story

Personalization is a double edged sword. On one hand, it enhances user experiences by offering tailored recommendations, but on the other hand, it raises significant privacy concerns. Google Play's recent announcement about introducing new personalization options is a prime example of this dichotomy. While these changes promise a richer, more tailored experience for users, they also highlight some underlying privacy risks that cannot be ignored. Read Full Story

Understanding the Security Risks and Solutions for Protecting Sensitive Data There is a trend emerging for anyone launching a consumer business. Almost every business these days does two things: the first is to create an app and the second is to publish an API. Read Full Story

The recent breach at AT&T has once again highlighted the critical importance of robust security measures throughout the supply chain. As reported by SC Magazine, this incident has left many questioning the security of their sensitive information. This incident, affecting millions of customers, highlights why mobile devices and their data are prime targets for cybercriminals and why their security must be a priority. Read Full Story

Major API Breaches in H1 of 2024 Earlier this year, we provided an overview of the significant security breaches from 2023. It's now clear that for API related breaches, this year is on track to be even worse. Read Full Story

The Japanese Regulation in Context On June 12 2024 the Japanese Government passed into law the Act on Promotion of Competition for Specified Smartphone Software (SSCPA) or simply the Smartphone Act. Read Full Story

This overview outlines the development and adoption of Huawei HarmonyOS and the associated security solution Safety Detect, highlighting some limitations with the approach. As regulations such as the EU DMA force the use of alternative app stores, the dependence of Huawei security features on the use of the Huawei AppGallery app store and ecosystem will also prove to be problematic for developers. We also compare and contrast Huawei HarmonyOS Safety Detect with the comprehensive mobile security offered by Approov. Read Full Story