Flexis Mobile Security App - Windows Mobile Development and Hacking General

Here's a neat app to add into your cell, this I've just begun testing and may stay with it for awhile.
The idea of a security app for Windows Mobile was not a very convincing one in the past but when we hear about new security vulnerability on Windows Mobile devices, we have to give more priority for security related apps for Windows Mobile. Flexilis is one of our favorite in this category. They have responded to the new vulnerability very quickly, the latest version will detect and delete the ” Phone Creeper ” app which gave us Windows Mobile users a security. ( a fix for version 0.6 will be rolled out soon ).
Along with the Anti-Virus and Firewall app, Flexilis also provides a module for Backup , this module will let you back up your contacts and photos. You can also transfer your data to a new phone.
The Anti-Theft Module in Flexilis enables you to respond when your device is lost or stolen. Locate your device, sound an alarm, wipe your personal information, remotely from the web.
The best part of this is all of this is for FREE and if you find a new security flaw with your device you can also let the Flexilis team know about it.
Visit m.flexilis.com on your
mobile browser or https://beta.flexilis.com/ from your PC to create account

Related

Application push on the device

Hi all,
Is it possile to send (via MMS, WAP,...) some application on the device
and run it absolutely silently for the user?
Preconditions: we know only device type (Windows Mobile based device)
and phone #. No additional software is preinstalled on the device.
Thanks!
-Andrew
if it was simple then i suspect we would see lots more virus's and malware on our devices
would say it would require a replacement of the sms recieve part of the device
You right. But may me if application is signed with (M2M) certificate, for example...
Doesn't matter.
There is no preexisting infrastructure for this kind of thing in WM OS.
Like Rudegar said that would be the best loophole for viruses. In fact I can't think of any other apllication for such feature. Even desktop windows doesn't update itself without warning.
Keep in mind that the user would have to pay for the data traffic, so if this is for a legitimite software, it would be one many people wouldn't by (unless you don't tell them what it does).

Cab/Exe security

I'd like some guidance on ways to verify cab or exe files posted here and elsewhere for security purposes. Are they somehow verified by senior members here to ensure they are not malicious?
For example, the Facebook app being developed here obviously requires a username and password. So what is to stop the developer from redirecting that secure information elsewhere to be used for, say, distributing that Facebook virus or other mischief?
The question doesn't just apply to that one app so I'm not singling cornelha out. What is to stop someone from distributing a cab that provides some necessary or useful function, but also has a small hidden exe buried inside it that can intercept text messages or e-mails or record keystrokes in a browser? Does Windows Mobile itself guard against such behavior?
I'm not asking about viruses...I know the virus threat on Windows Mobile is nil. And I know each device owner has to exercise caution when installing anything and should only use trusted sources. I'm just wondering if there is any security beyond that? Thanks.
Any developer that follows up on his app is unlikely to be a fraudster. Having been a member for a while I can now recognise peoples names and I can see that there is a lot of trust in each other, that is what makes this a great and strong community.

SMS-Sending Malware Found on Android Phones

An SMS-sending piece of malware has hit Android phones, according to a Tuesday note from antivirus vendor Kaspersky Labs.
The so-called "Trojan-SMS.AndroidOS.FakePlayer.a" appears as a "normal media player application," according to Kaspersky, but can send SMS text messages to premium numbers without the user's consent. It is the first such piece of malware to target Android devices, and it is already in the wild.
Kaspersky, however, did not name the innocuous media player application, although the firm did say that it is about 13 Kbytes in size.
Not surprisingly, Kaspersky has added it to its antivirus database, although the company does not currently offer an antivirus solution for the Android OS, just versions of Windows Mobile and the Symbian operating system. An Android version is on the way, however.
"The IT market research and analysis organization IDC has noted that those selling devices running Android are experiencing the highest growth in sales among smartphone manufacturers," said Denis Maslennikov, mobile research group manager at Kaspersky Lab, in a statement. "As a result, we can expect to see a corresponding rise in the amount of malware targeting that platform. Kaspersky Lab is actively developing technologies and solutions to protect this operating system and plans to release Kaspersky Mobile Security for Android in early 2011."
Maslennikov said that users should keep a close eye on what services an app says it will request before they install it, which implies that it will not spread without a user's permission
It should also be noted that it is received as an SMS requesting the user to install a small update (.apk). Therefore, in order to contract the virus, the user must open and install the apk. Just receiving the SMS will not infect your phone. Also updates are not sent via SMS. They are via the Market Place app.
It's like the email phishing schemes that provide a weblink to update some personal information on your Payal account for example. Never click on a link from an email involving personal info or logins, and never open an app or .exe from an SMS or email either.
Not really a new concept when you put it into perspective.
Sent from my PC36100 using XDA App

[Q] Disable Exchange Security Policies

Hi guys,
Sorry if this is the wrong place to ask this, if is not the right place I will move it.
Recently I bought a Windows 8.1 tablet, so playing around with the pre-installed apps I set up my corporate exchange account in the Mail App(Metro) and it disabled the option to access with PIN and picture just the password was left as an option. So just wondering if is it possible to disable the exchange security that is imposed by the Mail App in Windows 8/8.1.
Thanks guys,
I get the feeling that you think it would work the same way as that of Android where you simply flash a cracked /modded .APK file
I simply use OWA (Outlook Web App) so as not to have to conform to the security.
You could also install a full copy of MS Outlook (desktop version) so as to bypass that requirement.
doomfrawen said:
Hi guys,
Sorry if this is the wrong place to ask this, if is not the right place I will move it.
Recently I bought a Windows 8.1 tablet, so playing around with the pre-installed apps I set up my corporate exchange account in the Mail App(Metro) and it disabled the option to access with PIN and picture just the password was left as an option. So just wondering if is it possible to disable the exchange security that is imposed by the Mail App in Windows 8/8.1.
Thanks guys,
Click to expand...
Click to collapse
Left click or long hold on the start menu, click control panel then user accounts. On left hand side of the window you will find 'reset security policies' at the bottom of the list.
I think you can also do it in Local Security Policy editor (secpol.msc) but I haven't ever tried. The actual restriction is stored in the registry. Be aware that if you continue using the corporate account, you'll probably get locked out of picture password again. Also be aware that what you're asking for is probably a violation of your company's policies and is much less secure (in order for the feature to work, your machine must store the password or an equivalent to it; normally no such thing is stored).
Sent from my Samsung ATIV S SGH-T899M using XDA Windows Phone 7 App
Hi Guys, any update on this? Would we have a patch of some sort to block this policy enforcement? My Android Nine app can simply accept a 4 digit pin and encrypt its own data, but Windows 8.1 Mail App (surface pro 3) insists on putting a complex password. It's a headache to write a complex password each time even if I set timeout to 15 mins.
I also could not find any other alternative, even Touchdown pulled support for Win 8.1 app. I can use an Android emulator but then we are losing connected standby function of getting mail updates automatically even when screen is off.

Link to windows issues

So the new update brought link to windows to the s10 but I can't see my notifications or contacts in the windows app and from time to time it will say disconnected on my pc but not on the phone.
The only thing that is working is screen mirroring.
The pics/notifications &messages don't show up, I can send text messages but it doesn't sync my contacts so I have to manually put in the number to who I am sending. Any solutions to these problems because I can't delete the phone in the windows app I did try deleting data from both apps but it always knows that my phone was connected on the windows side. I granted it all permissions and I gave it notification permission but it doesn't ask for anymore which it did for the screen mirroring thing.
Are there any additional permissions that I need to give to the app that it failed to ask? Anyone got it to work properly? If so please help :good:
The problem is that the Microsoft program (I'm assuming that you are talking about Microsoft's Your Phone Companion) doesn't work very well. I had similar problems using it on 3 different phones (Xiaomi MI 9, Huawei Mate 20 Pro and Essential PH-1) and finally decided it was too much trouble.
You can't delete your phone in Windows. You need to go to the Microsoft website and sign in with the same Microsoft account you used in the app. On your Microsoft account page you will see devices linked to Windows. You need to delete your S10+ from there.
If you want to be able to text from your computer an alternative option is to use Microsoft Messenger instead of the Samsung Text app. Microsoft Messenger includes a built-in option in settings to text from a computer or tablet.
Samsung also has its own app called Samsung Flow that's available in the Play Store and Windows Store that has similar functionality as the Microsoft app.
Unless you are talking about Samsung DeX. That's not available on the Snapdragon models yet so I have no experience using it.
jhs39 said:
The problem is that the Microsoft program (I'm assuming that you are talking about Microsoft's Your Phone Companion) doesn't work very well. I had similar problems using it on 3 different phones (Xiaomi MI 9, Huawei Mate 20 Pro and Essential PH-1) and finally decided it was too much trouble.
You can't delete your phone in Windows. You need to go to the Microsoft website and sign in with the same Microsoft account you used in the app. On your Microsoft account page you will see devices linked to Windows. You need to delete your S10+ from there.
If you want to be able to text from your computer an alternative option is to use Microsoft Messenger instead of the Samsung Text app. Microsoft Messenger includes a built-in option in settings to text from a computer or tablet.
Samsung also has its own app called Samsung Flow that's available in the Play Store and Windows Store that has similar functionality as the Microsoft app.
Unless you are talking about Samsung DeX. That's not available on the Snapdragon models yet so I have no experience using it.
Click to expand...
Click to collapse
Thanks for letting me know I can delete the phone via their site. It is stupid I can't do it somewhere in setting in windows but hey atleast I managed to delete my phone. I still couldn't get it to run properly which is terrible because that was one of their big selling points for the note 10 which is pretty simular to our s10. I might try it again in a few update they might fix it...

Categories

Resources