Unified-Firewalls-Rohde-Schwarz-Cybersecurity

Security gap in messenger services: Are there implications for iOS and Android?

Does the critical vulnerability discovered on August 31 by Google's Project Zero in one of the most widely used messengers also have a direct impact on the iOS and Android operating systems used?

So far, this potential possibility has not been practically substantiated. Although today's mobile operating systems iOS and Android are becoming more and more secure, which means that attackers often have to exploit a whole chain of different security gaps to realize a successful attack, a successful attack can only rarely be completely excluded.

For a successful attack, it would be necessary to take advantage of the crash, introduce code, increase privileges in order to break out of the app context and then persist the introduced code so that it would also survive a reboot of the operating system. All individual steps can differ on different device types, so that attackers would have to expend considerable time and effort in order to enable large-area and reliable use.

Protected by the use of secure Rohde & Schwarz Cybersecurity products

With R&S®Trusted Mobile, Rohde & Schwarz Cybersecurity provides its own Android-based, comprehensively hardened operating system for mobile devices for companies and organizations. R&S®Trusted Mobile is divided into two areas: "Open" and "Restricted", which are completely isolated from each other by kernel-based hardening mechanisms. The open area (optionally fully controllable by the organization) behaves like a standard Android, i.e. apps from Google PlayStore can be installed and these can communicate via the interfaces available on the device.

The restricted area (which must be completely controlled by the customer) represents an extension of the customer intranet, because all communication from this area is carried out via a VPN that terminates in the customer infrastructure. This prevents confidential data from being exchanged via potentially insecure communication channels.

If customers use popular messengers on R&S®Trusted Mobile and a successful attack is carried out, as outlined above, "only" the open area with its applications would be affected. The restricted area with the confidential company data is not affected. In addition, Rohde & Schwarz Cybersecurity also takes measures to ensure that no data in the restricted area is affected by privilege escalation in the open area.

Rohde & Schwarz Cybersecurity provides R&S®Trusted Mobile with security updates at short, regular intervals, but is also able to react quickly to highly critical bugs.

Do you have any questions about current or general IT security challenges? Please contact us!

Request information

Do you have questions or need additional information? Simply fill out this form and we will get right back to you.

마케팅 동의

로데슈바르즈에서 다음과 같은 방법으로 정보를 수신하겠습니다

이것이 의미하는 바는 무엇입니까?

Rohde & Schwarz GmbH & Co. KG 및 본 웹사이트에서 명기하는 Rohde & Schwarz 법인 혹은 지사에서
테스트 및 계측, 보안 통신, 모니터링 및 네트워크 테스트, 방송 및 미디어, 사이버 보안 분야의 제품, 솔루션과 관련된 마케팅 및 광고 목적(예: 특별 행사 및 할인 프로모션에 대한 정보)을 위해 선택한 채널(이메일 또는 우편)을 통해 연락하는 데 동의합니다.

이용자의 권리

이 동의 선언은 news@rohde-schwarz.com에 "Unsubscribe"라는 제목으로 이메일을 보내 언제든지 취소할 수 있습니다. 또한 전송되는 각 이메일에 향후 이메일 광고에 대한 구독 취소 링크가 포함되어 있습니다. 개인 데이터 사용 및 해지 절차에 대한 자세한 내용은 "개인정보 보호정책"에 명시되어 있습니다.

신청하신 내용이 제출되었습니다. 빠른 시일 내 회신 받으실 것입니다.
An error is occurred, please try it again later.