Find the information you're looking for in our library
of blogs, news, videos, whitepapers and more.

Find the information you're looking for in our library of blogs, news, videos, whitepapers and more.

Blogs               News               Webinars               Whitepapers               Datasheets               Technical Papers               Use Cases               Guides

Highlighting the top Quokka content

Under the Promise of Early Success, CISA Expands its Beta Mobile App Vetting Service

CISA is proud to expand access to the Mobile App Vetting (MAV) service. CISA granted MAV an Authorization to Operate on February 8th, 2023, acknowledging the service’s key role in combating a growing risk of mobile app vulnerabilities threatening Federal Civilian Executive Branch (FCEB) agencies. Moreover, it is available at no cost to the user.

Learn More

Zero Trust Architecture: Mobile App and Device Security for Federal Agencies

Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.

Learn More

Election Security and Vote-by-App

A hidden system app can also be referred to as a ghost app and although these applications can be beneficial they can also pose threats to the user.

Learn More

Blog

Keep up to date with the latest industry news in cybersecurity's ever-evolving landscape.

See All Blog Posts

Strengthening Mobile App Security: Defense in Depth with MAST & RASP

In this blog, we will delve into two crucial components of defense in depth: Mobile Application Security Testing (MAST) and Runtime Application Self-Protection (RASP).

Read More

Examining the Security of Pre-installed Software on Prepaid Android Carrier Smartphones

In this blog, we share an overview of the security holes we found in pre-installed software on prepaid Android carrier smartphones.

Read More

Managing the Security and Privacy Pitfalls of Mobile App Extensions

Mobile app extensions are allowing developers to create advanced user experiences globally. As complexity grows, so does the importance of prioritizing security and data privacy.

Read More

In the News

Stay up to date on the latest press releases, news stories and media highlights from Quokka.

Read More News

Uncovering Security Vulnerabilities in Prepaid Android Smartphones, Quokka’s R&D Team Exposes Systemic Weaknesses

August 14, 2023

The research and development team at Quokka discovered multiple security vulnerabilities in prepaid Android Smartphones, including instances of arbitrary command execution in privileged processes.

Read More

Quokka’s Q-Scout Solution Revolutionizes Device Management with Industry’s First Personal Device Management Solution

June 7, 2023

Mobile security solution transforms BYOD in an enterprise ecosystem, prioritizing the privacy of company and personal data.

Read More

Disrupt Tech the Authorized Distributor of Quokka

May 30, 2023

Disrupt Tech Co., Ltd is now an authorized distributor of Quokka’s products Q-MAST, Q-Vest, Q-Scout and Firmware Analysis and announces the recent establishment of Quokka’s Q-MAST to Advanced Info Service Public Company Limited (“AIS”), the leading Mobile, Fiber Network and Digital Service Provider in Thailand with more than 40 million subscribers.

Read More

Webinars

Videos and content where you can learn about the latest threats, trends and issues in cybersecurity. Join us from wherever you are.

View More Webinars

Safeguarding Federal Agency Mobile Applications and Devices

Experts discuss Quokka’s Mobile Application Security Testing and Application Vetting solutions and how FCEB agencies can take advantage of this service without an impact to their annual budget.

Is Your Mobile App Supply Chain Putting Your Organization at Risk?

Demand for innovative mobile apps has led to organizations seeking third-party support for development and UX. However, outsourcing can create security challenges, leaving users open vulnerabilities. This webinar outlines application security during and after the development process.

Going Back into the Office? Learn How to Secure your BYOD & Protect Your Company

With many companies being in the early stages of returning to the office, we’re here to remind you that careful planning to secure employee’s devices during this time is very important and we’re here to help.

Whitepapers

Insights and helpful assets for exploring cybersecurity and digital security.

Read More Whitepapers

Your Intern Is Leaking Company Secrets and No One Knows It

Ensuring intern-accessed data is secure can be challenging for IT teams due to BYOD security, asynchronous engagement, and open policies on information sharing. This whitepaper outlines how Q-Scout can better protect your company’s data.

Read More

Zero Trust Architecture: Mobile App and Device Security for Federal Agencies

Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.

Read More

What Is Vulnerability Management?

Vulnerability Management is a constant state of identifying, evaluating, and remediating security vulnerabilities. Our whitepaper analyzes the importance of maintaining a proactive security posture and reducing the attack surface before a cyber criminal makes your organization their next target.

Read More

Datasheets

An in-depth description of Quokka solutions.

Q-Scout

Leading edge mobile device security delivering dynamic, actionable intelligence for fleet-wide protection.

Read More

Q-MAST

Detects security, privacy and code quality issues on iOS and Android Apps, without needing to access any source code.

Read More

Q-Vet

Quickly vets 3rd-party mobile apps before deployment to employees and app stores.

Read More

Technical Papers

A full library of our published technical papers.

Read More Technical Papers

Detecting and Measuring Misconfigured Manifest in Android Apps

This paper presents ManiScope, a tool to automatically detect misconfigurations of manifest files when given an Android APK. When implemented ManiScope identified misconfigured pre-installed apps with various security implications including app defrauding, message spoofing, and more.

Download

101 Commands Technical Paper

We deeply examine an instance of an engineering app that allows external entities to invoke its “custom” commands that will execute in the privileged context of the engineering app.

Download

Bootlooped - Assorted AOSP Attack Technical Paper

We examine some attack surfaces accessible to unprivileged third-party apps to determine how common functionality can be abused to affect the overall state of Android systems.

Download

Use Cases

Detailed overview of how Quokka solutions solve real-world pain points.

Q-MAST Solution Spotlight: Federal Agency

When security, privacy, and discretion are key, federal agencies lean on Q-MAST to establish trust.

Read More

Q-MAST Solution Spotlight: Banking

Global financial institutions trust Q-MAST to keep mobile apps safe, secure and compliant.

Read More

Q-MAST Solution Spotlight: Medical Schools

Learn why some of the nation's leading medical schools choose Q-MAST for mobile application vetting and security.

Read More

Guides

An in-depth description of Quokka solutions.

Mobile Application Security Best Practices for Fintech Apps

In-depth guide on Quokka's industry leading mobile application security testing solution, Q-MAST, currently used by the world's leading financial institutions.

Read More

Federal Agency Guide to DevSecOps Adoption

This guide outlines specific challenges federal agencies face with DevSecOps adoption and 3 key ways to navigate this path between innovation and security.

Read More

Newsletter

Subscribe today for news, updates, and insights for your work and live anywhere world.