Tag
mobile-appsec
Safeguard articles tagged "mobile-appsec" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Application Security
Mobile Application Security: Risks & Tools
BLASTPASS, XcodeGhost, and a 2024 OWASP supply-chain category show mobile app security is its own attack surface — here's what to fix first, and with what tools.
Apr 10, 20267 min read
Software Supply Chain Security
CocoaPods supply chain security and Podfile.lock integrit...
A 2024 CocoaPods Trunk server flaw let attackers hijack orphaned pods and exposed a deeper gap: Podfile.lock never verified dependency integrity in the first place.
Jan 30, 20267 min read
AppSec
Mobile Security Testing for iOS and Android Apps
Mobile apps fail in ways web apps don't — insecure local storage, weak certificate pinning, reverse-engineerable binaries — and testing them requires methods most web-focused AppSec programs never built.
Apr 9, 20256 min read