Find the information you're looking for in our library
of blogs, news, videos, whitepapers and more.
Find the information you're looking for in our library of blogs, news, videos, whitepapers and more.
Highlighting the top Quokka content
Under the Promise of Early Success, CISA Expands its Beta Mobile App Vetting Service
CISA is proud to expand access to the Mobile App Vetting (MAV) service. CISA granted MAV an Authorization to Operate on February 8th, 2023, acknowledging the service’s key role in combating a growing risk of mobile app vulnerabilities threatening Federal Civilian Executive Branch (FCEB) agencies. Moreover, it is available at no cost to the user.
Learn More
Zero Trust Architecture: Mobile App and Device Security for Federal Agencies
Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.
Learn More
Election Security and Vote-by-App
A hidden system app can also be referred to as a ghost app and although these applications can be beneficial they can also pose threats to the user.
Learn MoreBlog
Keep up to date with the latest industry news in cybersecurity's ever-evolving landscape.
See All Blog Posts
Nation-State Hacking Group and Criminal Gang Hacked Federal Civilian Agency
A recent joint alert released by the Cybersecurity and Infrastructure Security Agency, the FBI and the Multi-State Information Sharing and Analysis Center stated that multiple attackers were able to compromise a system at one unnamed Federal civilian executive branch agency from November 2022 to January 2023, and advised other organizations to take action to mitigate any similar vulnerability.
Read More
Top 3 Fintech Security Issues that Keep CISOs up at Night
Many CISOs find themselves flanked by a range of intense legal requirements amidst a quickly changing technology landscape that can prove difficult to secure effectively. We're sharing the top three fintech-related security issues that keep CISOs up at night.
Read More
Unmasking the Deceptive Techniques of Banking Malware: Cloak and Dagger Attacks
This blog aims to increase awareness of the cloak and dagger modus operandi, specifically how it utilizes two seemingly innocuous techniques to exploit users' trust in banking apps. For end users, app developers, CIOs, CISOs, understanding these tactics could be the key to protect your financial assets and your organization's reputation.
Read MoreIn the News
Stay up to date on the latest press releases, news stories and media highlights from Quokka.
Read More News
Quokka Publishes the Shopping App “Nice List” for the 2022 Holiday Season
November 28, 2022
Research Test Reveals the Shopping Apps that Pose the Least Security and Privacy Risks
Read More
Quokka Announces GitLab Integration
November 1, 2022
Q-MAST is available on GitLab’s One DevOps Platform allowing mobile app developers to test their apps during the development process, ensuring they deliver mobile applications that meet security and quality standards.
Read More
Introducing Q-Scout, a Mobile Security Solution for the Modern World
September 13, 2022
Q-Scout - the first mobile security solution of its kind to balance employee access to corporate networks with robust personal privacy.
Read MoreWebinars
Videos and content where you can learn about the latest threats, trends and issues in cybersecurity. Join us from wherever you are.
View More Webinars
Safeguarding Federal Agency Mobile Applications and Devices
Experts discuss Quokka’s Mobile Application Security Testing and Application Vetting solutions and how FCEB agencies can take advantage of this service without an impact to their annual budget.
Is Your Mobile App Supply Chain Putting Your Organization at Risk?
Demand for innovative mobile apps has led to organizations seeking third-party support for development and UX. However, outsourcing can create security challenges, leaving users open vulnerabilities. This webinar outlines application security during and after the development process.
Going Back into the Office? Learn How to Secure your BYOD & Protect Your Company
With many companies being in the early stages of returning to the office, we’re here to remind you that careful planning to secure employee’s devices during this time is very important and we’re here to help.
Whitepapers
Insights and helpful assets for exploring cybersecurity and digital security.
Read More Whitepapers
Zero Trust Architecture: Mobile App and Device Security for Federal Agencies
Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.
Read More
What Is Vulnerability Management?
Vulnerability Management is a constant state of identifying, evaluating, and remediating security vulnerabilities. Our whitepaper analyzes the importance of maintaining a proactive security posture and reducing the attack surface before a cyber criminal makes your organization their next target.
Read More
What Is Mobile Security?
The market for mobile apps is predicted to generate up to $935 billion in revenue by 2023 – meaning that mobile apps are pretty much indispensable. In this whitepaper we discuss the importance of mobile application security and how consistently testing mobile apps in the development process can ensure overall app security and quality.
Read MoreDatasheets
An in-depth description of Quokka solutions.
Detecting and Measuring Misconfigured Manifest in Android Apps
This paper presents ManiScope, a tool to automatically detect misconfigurations of manifest files when given an Android APK. When implemented ManiScope identified misconfigured pre-installed apps with various security implications including app defrauding, message spoofing, and more.
Download
101 Commands Technical Paper
We deeply examine an instance of an engineering app that allows external entities to invoke its “custom” commands that will execute in the privileged context of the engineering app.
Download
Bootlooped - Assorted AOSP Attack Technical Paper
We examine some attack surfaces accessible to unprivileged third-party apps to determine how common functionality can be abused to affect the overall state of Android systems.
DownloadUse Cases
Detailed overview of how Quokka solutions solve real-world pain points.
Q-MAST Solution Spotlight: Federal Agency
When security, privacy, and discretion are key, federal agencies lean on Q-MAST to establish trust.
Read More
Q-MAST Solution Spotlight: Banking
Global financial institutions trust Q-MAST to keep mobile apps safe, secure and compliant.
Read More
Q-MAST Solution Spotlight: Medical Schools
Learn why some of the nation's leading medical schools choose Q-MAST for mobile application vetting and security.
Read MoreGuides
An in-depth description of Quokka solutions.
Mobile Application Security Best Practices for Fintech Apps
In-depth guide on Quokka's industry leading mobile application security testing solution, Q-MAST, currently used by the world's leading financial institutions.
Read More
Federal Agency Guide to DevSecOps Adoption
This guide outlines specific challenges federal agencies face with DevSecOps adoption and 3 key ways to navigate this path between innovation and security.
Read MoreNewsletter
Subscribe today for news, updates, and insights for your work and live anywhere world.
