The Appdome Dev+Sec blog is your source for expert insights on protecting your mobile business. We break down the most pressing issues facing mobile businesses including: AI-powered fraud, and API abuse and bot attacks, device binding, security and compliance, and threat telemetry and devops and compliance issues.
Whether you’re a CISO, product owner, app developer, or mobile security leader, this blog is built to empower your team with the knowledge to stay ahead of threats—and the tools to act instantly.
Protect your mobile business. Defend what matters. Evolve faster than attackers.
In 2023, the global video streaming market was valued at $554B and the global music streaming market at $41B. When looking at the streaming market on mobile apps; mobile…
The OWASP MASVS (Mobile Application Security Verification Standard) is a standard that establishes mobile app security requirements for developers to build secure mobile apps and security teams to test mobile apps. On Appdome, brands can easily comply with the OWASP MASVS standard.
Businesses invest capital to create valuable products and services and bring with them an expectation of a high return on that investment. Costs in a business are based on…
Spear phishing attacks used to be limited to high-profile targets such as CEOs, politicians, and other influential individuals. These attacks required extensive research, preparation, and coordination, making them a…
Threat and risk data is critical to combating mobile fraud. Everyone knows that. The more important challenge has been “when,” “where” or “how” to leverage this data to defeat…
In recent years, the proliferation of streaming services has revolutionized the way we consume media. From movies and TV shows to music and podcasts, the convenience of streaming platforms…
A Screen Overlay Attack (sometimes also called Clickjacking) is an attack method whereby bad actors and fraudsters uses multiple transparent or opaque layers to trick a user into clicking on a button…
This post will discuss Appdome’s new social engineering prevention solution.
In an era where mobile applications have become an integral part of our lives, safeguarding user data and trust is…
In an era where secure and lawful app operations are paramount, the demand for robust geo compliance, identity verification, and anti-fraud measures has surged across various sectors. With specific…
In an era where mobile apps reign supreme, the threat landscape has shifted significantly in terms of where cyber-criminals focus their efforts using malicious bots.
The Menace of Malicious…
Traditional anti-bot solutions, like Web Application Firewalls (WAFs), struggle to protect against most mobile-based attack vectors, resulting in significant blind spots in organizations’ API defenses, highlighting the need for advanced mobile-specific bot defense solutions.
The Securities and Exchange Commission’s recent indictment of the SolarWinds CISO grabbed my attention. I had to write about it from a DevSecOps, or…
Have a Security Project?
We Can Help!
