Skip to main content
        • Products

          Q-Scout

          Leading edge mobile device security delivering dynamic, actionable intelligence for fleet-wide protection applications

          Q-MAST

          Comprehensive testing for developers who build, use, and manage mobile applications

          Q-Vet

          Mobile app vetting for curated and enterprise managed app stores

        • Solutions by Want

          Mobile Application Security Testing

          Advanced analysis utilizing static, dynamic & interactive analysis of Android and iOS mobile applications

          BYOD

          Secure devices connecting to the enterprise network in the work and live anywhere world

          App Vetting

          Transparent and high-confidence results using pass/fail security evidence

          End Users

          Airtight digital security that empowers you to make informed decisions on what apps you do and do not give access to

          Regulatory Compliance

          Automated compliance testing for the latest privacy and security standards

        • Untitled Document

          All Resources

          Blogs

          The latest industry news in cybersecurity’s ever-evolving landscape

          Newsroom

          Press releases, news stories and media highlights from Quokka

          Webinars

          Videos and content where you can learn about the latest threats, trends and issues in cybersecurity

          Whitepapers

          Insights and helpful assets for exploring cybersecurity and digital security

        • Datasheets

          An in-depth description of Quokka solutions

          Technical Papers

          Deep dive into cybersecurity topics and technical papers discovered by Quokka

          Use Cases

          Detailed overview of how Quokka solutions solve real-world pain points

          Partners

          Learn more about Quokka’s technology partners

        • Company

          Careers

          There are jobs - and then there is a career at Quokka

          Industries

          Solutions designed for security needs of your organization

          Leadership

          Quokka’s global management team comprised of security experts and industry leaders

  • Support

CES 2023 Recap on Mobile App Technology

Melissa Gaffney | January 17, 2023

Melissa Gaffney

January 17, 2023

CES is known as “the most influential tech event in the world – the proving ground for breakthrough technologies and global innovators.” The four day event brings companies around the world together to share their top of the line innovations from genetically engineered houseplants for air purification to a flying car; nothing is off the table and the new technology continues to surprise and excite consumers. Here are a few of my takeaways from the mobile app technology that came out of CES this year.

Ring™ Car Cam

Amazon’s security company designed a camera that helps detect break-ins and gives you the ability to check in with your car via the Ring App. You can also talk remotely with anyone near your car, or have it record whatever is happening nearby, in case you want a record during an accident. The device can also be used to record being pulled over by the police, which could potentially be helpful in civil rights cases.

  • Cybersecurity Concern: The primary concern is how the company handles user data with its current technologies like its smart home and video doorbells. Now it wants to access another aspect of your life which is your car. Hackers have been known to infiltrate smart doorbells to harass or threaten people and they can potentially do the same for when you are driving resulting in car collisions or worse.

Neutrogena’s™ Updated Skin360 App

The app only requires the camera on your phone to get a deep, in-depth assessment of your skin. The images are analyzed using Neutrogena’s database of 10,000 other selfies from a range of age groups and ethnicities. The app also prompts you to take weekly progress photos and “As more data is tracked, NAIA will use machine learning to improve analysis and recommendations, getting more precise and intelligent,” said Michael Southall, the global research and development lead of Neutrogena Skin Tech.

  • Cybersecurity Concern: A major concern with facial scans and access to your device’s camera is security and collecting biometric data without consent. Essentially, if an unauthorized person gets access to your facial biometrics, they can technologically recreate your biometric data and use it to access other more important content that may require facial recognition to access. To note, a consumer recently filed a class action lawsuit with Neutrogena’s parent company Johnson & Johnson claiming the company illegally collected and stored biometric information through its Neutrogena Skin360 skincare program.

Samsung™ Flex Hybrid

The new OLED panel can fold and slide in or out to alter its size. While this is just a concept, the OLED offers wider viewing angles, darker blacks, higher contrast and deep colors, the new Flex Hybrid screens appear to be primed for entertainment.

  • Cybersecurity Concern: It can be an app developer’s nightmare. For one, the lack of a stable API in AOSP against which the devs would code, in turn means you now have to use Samsung-specific coding, updates, etc. and keep chasing after Samsung-specific changes. In addition, testing will be difficult since the standard emulators you get from AOSP wouldn’t have emulation for the new folding extras. A stipulation could be if the folding “features” become a standard part of AOSP, developer/product adoption would never pick up. With the folding phones, developers (including UI/UX teams) have to also navigate what to do when a sidebar pops out, the phone turns into a bigger window that may be a non-standard dimension, the user flips the phone, or when the user folds the phone, etc.

New technology is always fun and exciting but it also means a new opportunity and target for hackers. Here are a few security tips on how to protect your app’s data and privacy when it comes to new technologies.

  1. Use curated app stores when available
  2. Use a tool like Q-MAST to vet and scan all your apps privileges and privacy concerns
  3. Delete unneeded and unused apps
  4. Minimize personally identifiable information stored in apps
  5. Grant the least amount of privilege access to all installed apps
  6. Review location settings and grant the privilege of ‘only allow when app is in use’.

With Q-MAST, developers can integrate full automated mobile app security testing into their CI/CD pipeline to ensure a solid, secure final mobile app. A report is provided that shares threat details, remediation guidance and pass/fail evidence. Q-MAST digs deeper and tests more thoroughly and is capable of the depth and breadth of app testing required by the current market.

Leave a Reply

Close Menu