Find the information you're looking for in our library
of blogs, news, videos, whitepapers and more.

Find the information you're looking for in our library of blogs, news, videos, whitepapers and more.

Blogs               News               Webinars               Whitepapers               Datasheets               Technical Papers               Use Cases               Guides

Highlighting the top Quokka content

Under the Promise of Early Success, CISA Expands its Beta Mobile App Vetting Service

CISA is proud to expand access to the Mobile App Vetting (MAV) service. CISA granted MAV an Authorization to Operate on February 8th, 2023, acknowledging the service’s key role in combating a growing risk of mobile app vulnerabilities threatening Federal Civilian Executive Branch (FCEB) agencies. Moreover, it is available at no cost to the user.

Learn More

Zero Trust Architecture: Mobile App and Device Security for Federal Agencies

Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.

Learn More

Election Security and Vote-by-App

A hidden system app can also be referred to as a ghost app and although these applications can be beneficial they can also pose threats to the user.

Learn More

Blog

Keep up to date with the latest industry news in cybersecurity's ever-evolving landscape.

See All Blog Posts

The Spread of ByteDance Code Beyond the TikTok App

In this blog, we focus on the spread of code written by the creators of TikTok throughout App Stores.

Read More

The Surge in Artificial Intelligence Poses Cybersecurity Concerns

Attackers are leveraging AI to craft software that can exploit vulnerabilities in ways never seen before. These sophisticated programs can alter their appearance and processes to slip past traditional detection methods, allowing them to exfiltrate sensitive data undetected.

Read More

The Security Risks Inherent in the TikTok App

Next in or series on the app TikTok, we shift our focus from the permissions to the security risks inherent in TikTok and our sample set of apps.

Read More

In the News

Stay up to date on the latest press releases, news stories and media highlights from Quokka.

Read More News

Disrupt Tech the Authorized Distributor of Quokka

November 1, 2022

Disrupt Tech Co., Ltd is now an authorized distributor of Quokka’s products Q-MAST, Q-Vest, Q-Scout and Firmware Analysis and announces the recent establishment of Quokka’s Q-MAST to Advanced Info Service Public Company Limited (“AIS”), the leading Mobile, Fiber Network and Digital Service Provider in Thailand with more than 40 million subscribers.

Read More

Quokka Named Winner of the Coveted Global InfoSec Awards during RSA Conference 2023

April 24, 2023

Quokka Wins Publisher's Choice Mobile App Security in 11th Annual Global InfoSec Awards at #RSAC 2023

Read More

Quokka Publishes the Shopping App “Nice List” for the 2022 Holiday Season

November 28, 2022

Research Test Reveals the Shopping Apps that Pose the Least Security and Privacy Risks

Read More

Webinars

Videos and content where you can learn about the latest threats, trends and issues in cybersecurity. Join us from wherever you are.

View More Webinars

Safeguarding Federal Agency Mobile Applications and Devices

Experts discuss Quokka’s Mobile Application Security Testing and Application Vetting solutions and how FCEB agencies can take advantage of this service without an impact to their annual budget.

Is Your Mobile App Supply Chain Putting Your Organization at Risk?

Demand for innovative mobile apps has led to organizations seeking third-party support for development and UX. However, outsourcing can create security challenges, leaving users open vulnerabilities. This webinar outlines application security during and after the development process.

Going Back into the Office? Learn How to Secure your BYOD & Protect Your Company

With many companies being in the early stages of returning to the office, we’re here to remind you that careful planning to secure employee’s devices during this time is very important and we’re here to help.

Whitepapers

Insights and helpful assets for exploring cybersecurity and digital security.

Read More Whitepapers

Zero Trust Architecture: Mobile App and Device Security for Federal Agencies

Federal agencies are being mandated to deploy a Zero Trust model by 2024 however many overlook the importance of mobile application security. This whitepaper outlines how to avoid this pitfall and exponentially reduce your threat landscape.

Read More

What Is Vulnerability Management?

Vulnerability Management is a constant state of identifying, evaluating, and remediating security vulnerabilities. Our whitepaper analyzes the importance of maintaining a proactive security posture and reducing the attack surface before a cyber criminal makes your organization their next target.

Read More

What Is Mobile Security?

The market for mobile apps is predicted to generate up to $935 billion in revenue by 2023 – meaning that mobile apps are pretty much indispensable. In this whitepaper we discuss the importance of mobile application security and how consistently testing mobile apps in the development process can ensure overall app security and quality.

Read More

Datasheets

An in-depth description of Quokka solutions.

Q-Scout

Leading edge mobile device security delivering dynamic, actionable intelligence for fleet-wide protection.

Read More

Q-MAST

Detects security, privacy and code quality issues on iOS and Android Apps, without needing to access any source code.

Read More

Q-Vet

Quickly vets 3rd-party mobile apps before deployment to employees and app stores.

Read More

Technical Papers

A full library of our published technical papers.

Read More Technical Papers

Detecting and Measuring Misconfigured Manifest in Android Apps

This paper presents ManiScope, a tool to automatically detect misconfigurations of manifest files when given an Android APK. When implemented ManiScope identified misconfigured pre-installed apps with various security implications including app defrauding, message spoofing, and more.

Download

101 Commands Technical Paper

We deeply examine an instance of an engineering app that allows external entities to invoke its “custom” commands that will execute in the privileged context of the engineering app.

Download

Bootlooped - Assorted AOSP Attack Technical Paper

We examine some attack surfaces accessible to unprivileged third-party apps to determine how common functionality can be abused to affect the overall state of Android systems.

Download

Use Cases

Detailed overview of how Quokka solutions solve real-world pain points.

Q-MAST Solution Spotlight: Federal Agency

When security, privacy, and discretion are key, federal agencies lean on Q-MAST to establish trust.

Read More

Q-MAST Solution Spotlight: Banking

Global financial institutions trust Q-MAST to keep mobile apps safe, secure and compliant.

Read More

Q-MAST Solution Spotlight: Medical Schools

Learn why some of the nation's leading medical schools choose Q-MAST for mobile application vetting and security.

Read More

Guides

An in-depth description of Quokka solutions.

Mobile Application Security Best Practices for Fintech Apps

In-depth guide on Quokka's industry leading mobile application security testing solution, Q-MAST, currently used by the world's leading financial institutions.

Read More

Federal Agency Guide to DevSecOps Adoption

This guide outlines specific challenges federal agencies face with DevSecOps adoption and 3 key ways to navigate this path between innovation and security.

Read More

Newsletter

Subscribe today for news, updates, and insights for your work and live anywhere world.