Airscanner.com

For software announcements, anti-virus definition updates, and virus alerts, sign up for the Airscanner mailing list.

Enter your Email address below and click "Send."


Subscribe	Unsubscribe

Apr 15, 2008 - April 2008 Airscanner Software Update

*** Airscanner Mobile Firewall v3.0 released

Thanks to the thousands of testers who helped with feedback for our latest revision of Airscanner Mobile Firewall. Airscanner has the oldest and most widely tested personal firewall for the Windows Mobile platform. It has been completely rewritten and now supports both WiFi and GSM/GPRS connections. You can read more about it, or download a trial, here: http://airscanner.com/downloads/firewall/firewall.html

*** Airscanner adds detection for Flexispy

A new online update for Airscanner Mobile Antivirus was released this month. It adds detection for FlexiSPY for Windows Mobile. Read our advisory here:

http://airscanner.com/security/08031201_flexispy.htm

Mar 10, 2008 - March 2008 Airscanner Software Update

***Airscanner wins "Best Security Software of the Year"

The Airscanner team is pleased to announce that Airscanner Mobile Security Suite was again awarded "Best Security Software of the Year" by Smartphone and PocketPC Magazine's distinguished Board of Experts. This is widely considered the most prestigious award in handheld software. The Airscanner team would especially like to give credit to you, our users, for giving such excellent feedback.

***New ALPHA release of Airscanner Firewall (v3.0a) for Windows Mobile handhelds (Experts only)

The oldest and best-known personal firewall for Windows Mobile Pocket PC is back in a brand new alpha release! After a long absence, Airscanner Mobile Firewall has been completely re-written from scratch in order to attempt support for Windows Mobile 5/6 and above. This is our first public release.

NOTE: Firewall is out of Alpha is can be downloaded (trial version) from our main product page.

Oct 03, 2007 - Airscanner Software Update (October 2007)

Airscanner Software Update - October 2, 2007

***New beta release: Airscanner Power Tools

Airscanner Power Tools is a completely new suite of utilities
designed just for you, the "Power User" who wants total control of
your device. You can read a user's manual and highlights of its many,
many features online here (PDF):
http://www.airscanner.com/downloads/powertools/ptbetamanual.pdf

This release is for Windows Mobile 5 and 6 Pocket PC only (not
smartphone):
Desktop installer:
http://www.airscanner.com/downloads/powertools/asmptools.exe

"Over the Air" (on-device) Installer:
http://www.airscanner.com/downloads/powertools/asmptools_OTA.CAB

We hope you enjoy this exciting new suite of tools. We look forward
to hearing from you!

*** New Windows Mobile spyware

Mobile-spy has just released a commercial 'spouseware' program that,
when executed, secretly resides in the background of a Windows Mobile
phone device to collect information on the user. Information such as
incoming/outgoing phone calls, visited web sites, and SMS messages
are all captured and relayed to an online web portal that only a
person with the correct authentication information can access.
Airscanner antivirus is now detecting this program, not because it is
malware, but because we have found several ways to bypass its security
and essentially turn it into a trojan. To manually test for
installation, simply open up your phone and dial #123456789* or look
for a Program FilesSmartphone directory.

As usual, we will be publishing an in-depth, technical article on how
this program works, what it does, and why such programs could be
considered irresponsible and dangerous to release - especially when
their security features are easy to exploit.

*** Why webcams are very dangerous

Seth Fogie recently researched the Axis 207W wireless survallence
camera and wrote a two part article at InformIT.com that discusses
the many security issues he found. Included in this are wireless
denial of service attacks and image replacement, cross-site scripting
attacks and a cross-site request forgery attack that can turn the
camera into a remote trojan. Read more here:

http://www.informit.com/articles/article.aspx?p=1016099

http://www.informit.com/articles/article.aspx?p=1016102

*** Seth Fogie speaks

Airscanner VP Seth Fogie also recently spoke at IT Security World
2007 in San Fransisco on security of Windows Mobile software. In
particular, he discussed and demonstrated numerous programs that have
security vulnerabilities and how they can be leveraged against the
owner to expose sensitive data, install backdoors, and more. The hope
is to raise awareness so that innocent users will not be left
undefended.

*** Advisories

The following lists several vulnerabilities that Airscanner has
discovered in recent weeks, with links to full writeups. For years
Airscanner has been the only company formally researching Windows
Mobile security. Unfortunately, this has made us unpopular with some
vendors, although some of the more mature ones seem eager to hear of
the flaws and to fix the problem for their users. We'll keep taking
the heat in order to help protect you and to help advance the
integrity and reputation of the Windows Mobile operating system.

CE HTTP 2.37
http://www.airscanner.com/security/07090401_CEHTTP.htm

CE HTTP web server software is vulnerable to a directory traversal
attack that can allow an attacker remote access to the file system of
the target device.

Pocket HPH 5.0.0.2007.05.31.HPH**:
http://www.airscanner.com/security/07090402_pockethph.htm

Pocket HPH web server software is vulnerable to a directory traversal
attack that can allow an attacker remote access to the file system of
the target device. In addition, the source code of any php file on
the server can be remotely viewed by adding an 's' on to the file
extension. The program was fixed and an update is available.

Mobile Webserver 1.5
http://www.airscanner.com/security/07090401_mobilewebserver.htm

Mobile Webserver web server software is vulnerable to a directory
traversal attack that can allow an attacker remote access to the file
system of the target device. The software is available for both
Windows Mobile and Windows desktop operating systems. The program was
fixed and an update is available.

*** Airscanner antivirus v3.0 database update

The latest update to Airscanner antivirus includes detection of
"MobileSpy" (disucssed above) to the virus database. To update via
the Internet, simply use your update scheduler or click on the
"update" feature in the program. For those users who have restricted
Internet access (e.g. U.S. military), we do have direct update
installers. Simply point your network admin to these files:

*** Direct update installers (for users without Internet access):

Pocket PC 4.2:
http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavduppc42.exe

Pocket PC WM 5.0:
http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavduppc50.exe

Pocket PC WM 6.0:
http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavduppc60.exe

SmartPhone:
http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavdusp.exe

Note that these installers should only be used if you do not have
Internet access via Active Sync to your PC or wireless. The best way
to update your antivirus is through the Internet, using the Update
feature and/or scheduler build into the antivirus program.

Sincerely,

The Airscanner security team

Aug 15, 2007 - Airscanner Software Update (August 2007)

Airscanner Software Update August 14, 2007

*** New Windows Mobile SafeMode tool released in alpha version

For power users only! Airscanner has released an alpha version of its new SafeMode tool. This is similar to the safe mode you use on Windows PCs, which has been conspicuously absent in Windows Mobile. The goal is the help you recover from system errors or buggy, 3rd party software, without having to lose your data. NOTE: this is alpha version test software, so please make sure to back up your data before trying it.

You can read the user's manual online here: http://www.airscanner.com/downloads/safemode/SafeMode_Manual.pdf

You can download the test version here: http://www.airscanner.com/downloads/safemode/asmsftool.exe http://www.airscanner.com/downloads/safemode/asmsfOTA.CAB

*** Airscanner protects from Cain and Abel mobile

As a reminder, Airscanner antivirus now protects you from the new malware for Windows Mobile devices known as Cain and Abel. This pesky malware is a malicious port of the Cain and Abel tool. Users who have updated their antivirus are now protected.

*** Direct updater for Windows Mobile

For corporate admins who must update internal devices from behind a firewall, Airscanner has a direct antivirus updater Network admins can use the following links:

Pocket PC 4.2: http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavduppc42.exe
Pocket PC WM 5.0: http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavduppc50.exe
Pocket PC WM 6.0: http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavduppc60.exe
SmartPhone: http://www.airscanner.com/downloads/av/updmavv30/directupd/asmavdusp.exe

*** Airscanner presentations

Airscanner will be presenting at the IT Security World 2007 conference to be held in San Fransisco on Sept 19th. Airscanner VP Seth Fogie will be discussing many of the security issues that Windows Mobile users and developers need to understand. The talk will examine numerous types of vulnerabilities that Airscanner has discovered in Windows Mobile software - from sensitive data leakage to bypassing the security measures of Code Signing via buffer overflows. We will also suggest countermeasures for protection.

*** New book from Airscanner

Airscanner's Seth Fogie has recently co-authored another book (along with Jeremiah Grossman, Robert 'rsnake' Hansen, Anton Rager, and Petko D. 'pdp' Petkov) titled Cross Site Scripting Attacks: Xss Exploits and Defense (http://www.amazon.com/Cross-Site-Scripting-Attacks-Exploits/dp/1597491543). The book examines the ins-and-outs of XSS vulnerabilities and exploits, which not only affect desktop users, but also impacts Windows Mobile users in several ways. Read on for one such example.

*** Advisories

The following describes several vulnerabilities Airscanner has discovered in recent weeks.

Minimo .2 Password Manager Vulnerability - http://airscanner.com/security/07080103_minimo.2.htm

Minimo's (Mozilla for Windows Mobile) Password Manager is vulnerable to sensitive information theft when a site that a user has saved their password for is vulnerable to a cross-site scripting attack. As a result, and attacker can cause the victims browser to post the user/pass of the victim to an listening web server that will capture the users credentials - without the user knowing.

Creative Iye iPassword 3.0 Password Disclosure Vulnerability - http://airscanner.com/security/07080101_ipassword3.htm

iPassword is used as a central data store for passwords and other pieces of sensitive data. To open the 'secure' database, a user must supply a password. However, during the password verification process, the valid password is exposed in memory, thus giving an attacker all they need to open the file. In addition, the security features can be patched to completely bypass all protections.

MyCnknow Eye On Privacy 0.60(2007.04.10) Password Disclosure Vulnerability - http://airscanner.com/security/07080102_eyeonprivacy.htm

Eye On Privacy is used to safely store SMS messages and other sensitive information. However, during the password verification process, the valid password is exposed in memory, thus giving an attacker all they need to open the file. In addition, the security features can be patched to completely bypass all protections.

Airscanner Mobile Security Software: voted Best Security Software for 2005 by the Smartphone and Pocket PC Magazine Board of Industry Experts.

Apr 23, 2007 - Airscanner Software Update (Apr. 2007)

Airscanner Software Update
April 22, 2007

*** Seth Fogie reveals Windows Mobile application security weaknesses

Airscanner VP Seth Fogie recently spoke at the prestigious Shmoocon security conference. To say the least, it was an eye opening experience. Among other things, Seth gives a live demonstration of how to bypass Windows Mobile code signing security using buffer overflow examples.

Pauldotcom released a post-conference interview with Seth Fogie here (audio only). This podcast is a must-download for anyone with a serious interest in Windows Mobile security:
http://hydrogen.oshean.org/pauldotcom-SE-sethfogie.mp3

Seth's slides from the presentation are available here:
http://www.airscanner.com/pubs/shmoo2007_conference.pdf

A free download of the complete video from Seth's Shmoocon talk is available upon request. Note that is for advanced/expert users, and it is a very large download (170MB).

*** New sniffer release v2.5

A new version of Airscanner Mobile Sniffer adds a much-requested network toolset. The Sniffer now includes a Network Tools panel that allows ping, traceroute, whois and a simple port scan, all from the Pocket PC.

This is a free upgrade for existing users. To install the software, simply uninstall any old version of the sniffer and then re-install the new one from the trial versions below. Then enter your previous key (provided at time of purchase). If you have lost your key, you can get it automatically emailed to you from the web form at http://airscanner.com/contact.php

The following are the links to the new shareware version of the sniffer:

Active Sync 30-day trial installer (WM2003SE):
http://airscanner.com/downloads/sniffer/amsniffer.exe

Direct from PDA/OTA (.CAB file) 30-day trial installer (WM2003SE):
http://airscanner.com/downloads/sniffer/amsnifferota.CAB

Active Sync 30-day trial installer (WM5):
http://airscanner.com/downloads/sniffer/amsniffersigned.exe

Direct from PDA/OTA (.CAB file) 30-day trial installer (WM5):
http://airscanner.com/downloads/sniffer/amsniffersignedOTA.CAB

*** Clinton Fitch reviews Airscanner Mobile Antivirus

Read the new antivirus review by Clinton Fitch, a long-time supporter of the Windows Mobile enthusiast community:
http://www.clintonfitch.com/reviews/airscanner/antivirus-3-0/default.asp

*** New Blackjack Antivirus Version

The Blackjack is a somewhat odd device, at least for us. It is the only Windows Mobile Smartphone device that is utterly incompatible with Airscanner's antivirus; in fact, simply installing the antivirus on it will require you to perform a hard reset to unlock it. Clearly, the OEM has taken some creative liberties in making the Blackjack. Fortunately, we have found a workaround to the Blackjack's odd behavior.

In order to install the antivirus on a Blackjack smartphone, you must use this special "Blackjack" version installer here:
ActiveSync installer for PC:
http://www.airscanner.com/downloads/av3/sp_bj/asmav30_SP_BJ.exe
CAB installer for PDA:
http://www.airscanner.com/downloads/av3/sp_bj/asmav30_SP_BJ.CAB

*** R-PDA support added

Airscanner Corp. is pleased to announce that it has added antivirus support for the unique R-PDA from Talla-Tech at http://www.talla-tech.com/ . This ruggedized PDA runs Windows CE 5.0 and forms the core of many of the U.S. Military's mobility applications. Airscanner has created a custom version that is tested to work on the R-PDA. Special thanks to the United States military for providing Airscanner Corp. with test models of the R-PDA for research and development. Please contact Airscanner Corp. if you plan to roll out the R-PDA or if you would like to become a reseller to the U.S. military.

Airscanner Mobile Security Software: voted Best Security Software for 2005 by the Smartphone and Pocket PC Magazine Board of Industry Experts.

Jan 01, 2007 - Airscanner Software Update Jan 2007

Airscanner Software Update
Jan. 2007

Announcing a brand new version of Airscanner Mobile Antivirus (v3.0)

Airscanner is the world's #1 most popular antivirus for Windows Mobile. With over 2 million users, this product has won numerous awards, including Best Security Software from Pocket PC and Smartphone Magazine. Now, nearly 4 years after its first release, there is a completely new version Airscanner Mobile Antivirus.

New features and benefits in version 3.0:

Powerful, granular scheduler lets you get automatic updates and scans
Continuous background scanning
Improved task manager lets you debug and kill rogue applications
System information tools to help you monitor your device's health
A new user interface that is cleaner and more attractive
Optimized for much lower memory, CPU and battery use
Works on nearly every Pocket PC and Smartphone (except the Blackjack)
Support for most Windows CE "ruggedized" handhelds

Download a trial version for Pocket PC or Smartphone here:
http://airscanner.com/downloads/av/av.html

Existing users who wish to upgrade can contact us here:
http://airscanner.com/contact.php
(Please make sure to include your previous order number and date of purchase.)

Airscanner Mobile Security Software: voted Best Security Software for 2005 by the Smartphone and Pocket PC Magazine Board of Industry Experts.

Nov 14, 2006 - Airscanner Software Update (Nov. 2006)

Airscanner Software Update
November 12, 2006

New sniffer version 2.2

A new version of Airscanner Mobile Sniffer for Pocket PC (v2.2) was
recently released. This version should fix the driver loading problem
that was seen on a few devices. The sniffer now should work on most
devices, including the IPAQ 6900 series and many others. If you still
have a conflict with this version, it may be due to a conflicting,
3rd-party wireless applicaton; the only way to know for sure would be
to re-install the sniffer after a full, hard reset.

Note: In order to use promiscuous mode on the Sniffer product, your
device must have a built-in wireless card that supports promicuous
mode; not all of them do! Check with your OEM to be sure.

Thanks to all those who gave feedback. The following are the download
links; remember that for WM5 you need the "signed" version from below.
This is a free upgrade for users who have purchased the sniffer.
Please remember to uninstall any old version of the sniffer first:

Active Sync installer (WM2003SE):
http://airscanner.com/downloads/sniffer/amsniffer.exe

Direct from PDA/OTA (.CAB file) installer (WM2003SE):
http://airscanner.com/downloads/sniffer/amsnifferota.CAB

"Signed" versions for WM5:
Active Sync installer (WM5):
http://airscanner.com/downloads/sniffer/amsniffersigned.exe

Direct from PDA/OTA (.CAB file) installer (WM5):
http://airscanner.com/downloads/sniffer/amsniffersignedOTA.CAB

NOTE: You can read the online user's manual here:
http://airscanner.com/downloads/sniffer/sniffermanual.pdf

Airscanner in the News

Airscanner was mentioned in the Nov. 7, 2006 Wall St. Journal.
Airscanner VP Seth Fogie was also recently featured in CSO Magazine.

Airscanner Mobile Security Suite: voted Best Security Software for
2005 by the Smartphone and Pocket PC Magazine Board of Industry
Experts.

Sep 13, 2006 - Airscanner Software Update (Sept 2006)

Airscanner Software Update September 12, 2006

***Announcing Airscanner Mobile Encrypter v2.9

Note: Version 2.9 is a major upgrade. We recommend that you backup your important data, then completely remove any previous version of the Encrypter before installing version 3

--Set as Volume button that allows you to create a volume using existing folders on the device.
--All new .aev format for volumes improves volume handling.
--Import Volume button that allows you to import dismounted volumes (including those in previous versions with the .vol format) and convert them to the new .aev format automatically.
--Dual function Delete button that changes to an "Unset Volume" button automatically when volumes are mounted; this allows you to retain important folders while removing encryption functionality.
--Dual function Delete button also allows you to delete unwanted volume folders from the device completely when volumes are dismounted.
--New enhanced warning messages to safeguard your important data.
--Enhanced settings tabs text for new users.
--Numerous GUI and usability enhancements
--Important security bux fix relating to improper volume dismounting (thanks to Ken Ken Kuehni, Security Architect, Nortel)

Download links:
Active Sync 30-day trial installer:
http://airscanner.com/downloads/encrypter/ame.exe
Direct from PDA/OTA (.CAB file) 30-day trial installer:
http://airscanner.com/downloads/encrypter/ameota.CAB

Online user's manual:
http://airscanner.com/downloads/encrypter/EncrypterManual.htm

*** Windows Mobile Security Software Fails the Test

After many months of research, Airscanner has published an expose on the security of Windows Mobile software. In this paper, you can see example after example of how software vendors fail to protect their user's sensitive data. Plaintext storage, broken encryption schemes, dysfunctional protection methods, and more were found in this project. When this research is combined with statistics related to lost or stolen PDAs, the danger is clear.

History has taught the security community that software vendors will not code secure software unless forced to do so by consumers. The Pocket PC software market is a prime example of this 'law', which is why Airscanner performed this research.

Download PDF: http://www.airscanner.com/pubs/Airscanner_Security_Tests.pdf

*** MSMobiles.com Podcast:

Download an audio interview at MSMobiles with Seth Fogie talking about Airscanner Mobile Sniffer. Seth answers tough questions about Skype security, mobile instant messaging weaknesses, mobile malware, WiFi attacks and more. This interview was a real eye-opener on wireless security, even for those of us who do mobile security for a living. We highly recommended that you download and listen to the podcast. Hosted at MSMobiles:
http://msmobiles.com/news.php/5361.html

*** Reseller spotlight: Brianzaonline Italy
Brianzaonline (http://www.brianzaonline.it/ )is the exclusive Airscanner reseller for the growing Italian market. Brianzaonline CEO Massimo Canzi states that, "For us it is a really great opportunity. Airscanner is the best partner because they have the most advanced antivirus Suite for PDAs and Smartphones...Nearly every day, major Italian telco carriers express interest in Italian-localized Airscanner solutions powered by Brianzaonline."

Brianza online has aired television spots and has planned a road show across Italy to spotlight Airscanner solutions. Their current customers include the Italian Ministry of Defense Emergency Response Department. According to Canzi, "We are sure that Airscanner will be the new focal point for handheld antivirus solutions in the European market. The market is growing fast, and so is Airscanner."

*** Calling mobile software resellers and distributors
If you are interested in becoming a reseller, please contact us at contact@airscanner.com. Resellers currently receive 50% off MRSP for bulk orders of 50 licenses or more.

*** Airscanner Mobile Security Suite: voted Best Security Software for 2005 by the Smartphone and Pocket PC Magazine Board of Industry Experts. To subscribe or unsubscribe, please visit www.airscanner.com and simply use the same web form on which you first signed up.

Aug 14, 2006 - Windows Mobile Security Software Fails the Test

Airscanner News Release August 14, 2006

***Windows Mobile Security Software Fails the Test After many months of research, Airscanner has published an expose on the security of Windows Mobile software. In this paper, you can see example after example of how software vendors fail to protect their user's sensitive data. Plaintext storage, broken encryption schemes, dysfunctional protection methods, and more were found in this project. When this research is combined with statistics related to lost or stolen PDAs, the danger is clear.

Download PDF: Windows Mobile Security Software Fails the Test

Further information related to specific Windows Mobile vulnerabilities and bug discussed in this paper are available via MARA.

To subscribe or unsubscribe, please visit www.airscanner.com.

Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of Airscanner Corp. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please contact Airscanner Corp. for permission.

Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use on an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information.

Jul 06, 2006 - Airscanner Software Update July 7, 2006

*** Airscanner Mobile Sniffer: back by popular demand
Due to popular demand, the award-winning Airscanner Mobile Sniffer for Pocket PC has been ported to WM2003SE and WM5.0. It now has an updated and highly optimized design. You can download trial versions from here:
http://airscanner.com/downloads/sniffer/sniffer.html
NOTE: This product is not freeware. Use beyond a thirty day evaluation period requires a purchased license.

*** MARA releases its Top 10 mobile security "to do" list
The Mobile Antivirus Researchers Association has recently released its "MARA Top 10: The Ten Most Critical Wireless and Mobile Security Vulnerabilities." It is available online at: http://mobileav.org/
We recommend that you check out the vendor-neutral recommendations and learn how to protect yourself now.

*** Pocket PC Antivirus Update
The current Pocket PC Antivirus version (Windows Mobile Pocket PC) is 2.97. Users who haven't already done so can update by using the "online update" built into the antivirus program.
Fixes/Improvements in v2.97:
-Better handling on "signed" Pocket PC and Smartphones (WM5.0)
-Virus scanner speed increase
-Reduced memory consumption/battery use for real-time scanning (Active Guard)
-Central management ready: For organizations that will deploy the upcoming Central Management Console from Airscanner
-Improved process manager (task manager)
-Updated IDS (Intrusion Detection System) and file system monitor

*** Seth Fogie teaches WiFi security in Australia
Airscanner VP and security book author Seth Fogie recently returned from a two-week visit to Australia. While there, he gave a series of classes on advanced wireless network security. If you are interested in having Seth give a two-day vendor neutral class at your company, please contact us. A summary of the course syllabus can be found here:
http://airscanner.com/wireless/

*** Airscanner Mobile Security Suite: voted Best Security Software for 2005 by the Smartphone and Pocket PC Magazine Board of Industry Experts.

To subscribe or unsubscribe, please visit www.airscanner.com

Jan 10, 2006 - Tutorial on Debugging WM5 Apps

Debugging Third Party Software Applications for Windows Mobile 5.0 using Visual Studio 2005

A step-by-step guide compiled by Seth Fogie. Presented to the Windows Mobile development community by Airscanner® Corporation http://www.airscanner.com.

Summary: Prior to the release of Windows Mobile 5.0, the developer community was easily able to debug pre-compiled executables without the source code. You simply used the freely available EVC++ to open and execute the file, which would drop the exe onto the PDA and start a debugging process that attached to the remote executable. However, with the introduction of WM5, which requires Visual Studio 2005 for all programming, debugging a third party program without having the source code became a bit more difficult. This document will clarify the necessary steps to get Visual Studio debugging your Windows Mobile applications. Thanks to everyone at Microsoft who helped us get this working!

Link: http://www.airscanner.com/security/WM5debugVS2005.pdf

Jan 05, 2006 - Airscanner Software Update Jan 6, 2006

*** Introducing AirFix v1.0b: A new, free software tool for developers and security experts. Take back the WiFi Active Sync that Microsoft dangerously removed. Requires a WM5.0 device and ActiveSync 4.x. Read more and download here:
http://www.airscanner.com/downloads/airfix/airfix.html

*** Antivirus support for IPAQ 6500 added
Version 2.96 of Airscanner Antivirus for Pocket PC is now available. Updates include improvements to the Graphical User Interface, including support for square or landscape screens. That means that all Airscanner software is now compatible with square screen devices, such as the IPAQ 6500 series.

*** Call for Papers
Journal of Computer Virology
Special Issue on Mobile Malware and Anti-Malware Technologies

Any new computer technology cannot ignore the risk of malware. As soon as a new technical novelty appears, malware risk should be taken immediately into consideration. Mobile environments are probably the best recent examples with the growing activity of virus for mobile phones.

The Journal of Computer Virology invites authors to discuss the state of the art of malware and anti-malware technologies and security issues for mobile environments. Authors are invited to submit full technical papers of up to 25 pages presenting novel and mature research results. Papers will be reviewed and papers accepted will be published in a Special Issue of the Journal in Computer Virology.

The scope of this special issue includes, but is not limited to the following topics:*
· Viruses, worms, trojans and spyware (malicious codes threats).
· Antiviral techniques.
· System and network security.
· Software security.
· Software implementation security.
· PDA, smartphone and mobile device security.
· Wi-Fi/WLAN/Bluetooth security
· Reverse engineering.
· Cryptography and cryptanalysis.
· Mobile forensics and law-enforcement.
· Security policies.

Important dates
· Submission deadline: March 15, 2006.
· Notification of acceptance: June 15, 2006.
· Final paper camera ready copy due: July 7, 2006.

Paper Submissions

All submissions must be in English and in either postscript or PDF format. Submitted papers must not substantially overlap papers that have been published or that are simultaneously submitted to a journal or a conference with proceedings. White papers and technical reports meeting these restrictions are accepted. Read more at MARA here:
http://mobileav.org/

*** Airscanner Mobile Security Suite: voted Best Security Software for 2005 by the Smartphone and PocketPC Magazine Board of Industry Experts.

To subscribe or unsubscribe, please visit www.airscanner.com.

Jan 04, 2006 - Airscanner AirFix for WM5-AS4.x

Announcing Airscanner AirFix for Windows Mobile 5.0 and ActiveSync 4.x
http://www.airscanner.com/downloads/airfix/airfix.html

Reclaim your Wireless Connection!

Note: This Beta version of AirFix is free for personal, non-commercial use.

With the release of ActiveSync 4.0, mobile users everywhere suffered a
great loss. Namely, you can no longer maintain a network connection
while synced. This means that you can?t sync via WiFi or an Ethernet
connection. According to Microsoft, they removed this useful feature
because some corporate customers had thought it was a security risk.
However, we believe that taking it out is a much greater risk[1].

The result of this feature removal is that any ActiveSync session (via
Bluetooth, IR, or USB) will immediately disable your network connection.
Our AirFix program will give the control back to you, which is where it
belongs.

Nov 07, 2005 - Nov 2005 Airscanner Software Update

Airscanner Software Update
November 7, 2005

*** Windows Mobile Security 2005 Best Software Award Winner Announced

Airscanner Corporation has won the 2005 Best Software award in the Security Category of Smartphone & Pocket PC Magazine's Fifth Annual Best Software Awards. Airscanner's Mobile Security Suite won with it's combination of antivirus, firewall and encryption software for Pocket PC and Smartphone.

The Board of Experts who helped select the nominations and then voted for winners come from around the world. These experts run prominent enthusiast sites, serve as Microsoft MVPs, and write for Smartphone & Pocket PC Magazine and other orgranizations. These are all volunteers and none are permanent employees of Smartphone & Pocket PC magazine.

Airscanner Corp. would like to thank its users and the Board of Experts. We also want you to know that this award is not the end, but rather the beginning. We are completely rewriting our code base to optimize it for security, speed, and transparent integration into your mobile devices. Also, we are developing a centralized management console to help admins manage security software across the mobile enterprise. So we hope to continue making your mobile computing experience more enjoyable and secure in 2006 and beyond.

*** Airscanner discovers vulnerability in iTunes.

Seth Fogie of Airscanner has published a vulnerability in the popular iTunes Shared Music Feature, including a flash video demonstrating the exploit:
http://www.airscanner.com/security/05101001_itunes.htm

*** Insecure magazine continues comprehensive series on PDA Security

Part II of our extremely long and detailed technical article on PDA security is published at Insecure Magazine this month. You can read it online here:
http://www.insecuremag.com/

*** Become a reseller or an affiliate

You can earn a beefy 50% margin on sales if you are a volume reseller who can purchase in bulk (50 units or more). Learn more here:
http://www.airscanner.com/resellers/

To subscribe or unsubscribe, please visit www.airscanner.com.

Sep 23, 2005 - Sept. 23 News Letter

Airscanner Software Update
Sept. 23, 2005

*** Major upgrade for Airscanner Mobile Encrypter for PocketPC

Airscanner Mobile Encrypter v2.5 has been released and is available as a free upgrade for all existing users who have a valid license. Simply decrypt your files, remove any encrypted volumes, and uninstall the old version. Then dowload the new version here:

Active Sync installer:
http://airscanner.com/downloads/encrypter/ame.exe
Direct from PDA/OTA (.CAB file) installer:
http://airscanner.com/downloads/encrypter/ameota.CAB

v2.5 sports a host of improvements and minor bugfixes. Some of the highlights include:
--Encryption/Decryption is now 5-15% faster thanks to optimized memory management
--Optional autostart with Windows works on all devices
--Improved bitwipe feature allows you to rapidly and securely overwrite deleted files and memory cards to Department of Defense security standards.

*** Airscanner discovers multiple, critical vulnerabilities in Cambridge software for Pocket PC

The expoits were all published on Bugtraq, and include Cambridge FTP and Webserver software for Pocket PC. At least one of these vulnerabilities allows remote execution of code and should be considered a critical threat. You can stay tuned to Airscanner advisories at the following site:
http://www.airscanner.com/security/

*** Insecure magazine begins comprehensive series on PDA Security

Seth Fogie has written a long article on PDA security published at Insecure Magazine this month:
http://www.insecuremag.com/
It's the first of an extensive, three part series that Airscanner Corp. has written on PDA attacks and defenses.

*** Security Experts: Join the Mobile AntiVirus Researcher's Association

If you are interested in mobile security and have a legitimate need to receive zero-day PDA vulnerabilities and mobile malware binaries for research and analysis, you might consider joining the Mobile AntiVirus Researcher's Association (MARA). MARA is a vendor-neutral, free, non-profit, mobile security resesarch group. Applicants must submit an original, technical paper on mobile and/or wireless security, a CV, and two peer references. Papers are peer reviewed and published online. Details can be found here: http://www.mobileav.org/

*** Become a reseller or an affiliate

Our spotlight reseller this month (OEM) is www.IPAQChoice.com

You can earn a beefy 50% margin on sales if you are a volume reseller who can purchase in bulk (50 units or more). Learn more here:
http://www.airscanner.com/resellers/

*** Airscanner now protected by patent

Airscanner is pleased to announce that it is now protected by U.S. patent #6,931,570 B2, as well as multiple US patents pending.

*** New OEM and channel partners signed

Airscanner has recently announced new OEM and channel licensing relationships with Hewlett Packard EMEA and T-mobile Europe.

To subscribe or unsubscribe, please visit www.airscanner.com.

Aug 03, 2005 - Airscanner Software Update August 3, 2005

Airscanner Software Update
August 3, 2005

*** Airscanner discovers security vulnerability in Active Sync

Read the full details online here:
http://www.airscanner.com/security/activesync371.htm

*** New Smartphone AntiVirus (2.0)

A new version of the Smartphone AntiVirus (2.0) has been released. Version 2.0 installs a powerful, highly granular task Scheduler as a standalone program. Now you can have total control of how often your antivirus updates and of how often you perform file scans.

You can download the ActiveSync installer here:
http://airscanner.com/downloads/smartphone/smav.exe
or the over the air (CAB) installer here:
http://airscanner.com/downloads/smartphone/smavota.CAB

Please make sure to uninstall the previous version first. You can read the new Scheduler user manual online here:
http://airscanner.com/downloads/smartphone/smartphoneManual.htm

*** Current Pocket PC AntiVirus version is 2.95

This is a minor, optional point release that adds support for viewing memory available on external and internal storage cards.
You can download the ActiveSync installer here:
http://airscanner.com/downloads/av/amav.exe
or the over the air installer here:
http://airscanner.com/downloads/av/avota.exe

*** Current firewall is version 2.4

You can download the ActiveSync installer here:
http://www.airscanner.com/downloads/fw/amfw.exe
or the over the air installer here:
http://www.airscanner.com/downloads/fw/amfwota.CAB

*** Geekzone Airscanner antivirus software review:

http://geekzone.co.nz/content.asp?contentid=4718

*** Become a reseller or an affiliate

Our spotlight reseller this month is http://www.safe9.com

You can earn a beefy 50% margin on sales if you are a volume reseller who can purchase in bulk (50 units or more). Learn more here:
http://www.airscanner.com/resellers/

*** Airscanner becomes a Microsoft Certified Partner

Airscanner is pleased to announce that it has qualified for and received Microsoft Certfied Partner status.

To subscribe or unsubscribe, please visit www.airscanner.com.

Jun 18, 2005 - June 16, 2005 software update

*** Industry Review of PDA Security software

PC Today Magazine has published an industry review of security software for the PDA. Airscanner software is highlighted in the review. Read it online here.

*** Become a reseller or an affiliate

Our spotlight reseller this month is http://www.safepda.com

You can earn a beefy 50% margin on sales if you are a volume reseller who can purchase in bulk (50 units or more). Learn more here.

*** New Smartphone AntiVirus beta (2.0b)

A new beta version of the Smartphone AntiVirus (2.0b) has been released. Version 2.0 installs a powerful, highly granular task scheduler as a standalone program. Now you can have total control of how often your antivirus updates and of how often you perform file scans.

You can download the ActiveSync installer here:
smav20b.exe

or the over the air (CAB) installer here:
smav20bota.CAB

Please make sure to uninstall the previous version first. You can read the detailed user's manual online here (PDF).

*** New firewall beta (v2.3b)

A new beta of Airscanner mobile firewall may help solve the bug that, on some devices, appeared to be blocking the user from turning WiFi off after several minutes of use. Support for newer devices such as the iMate PDA2k has also been added. You can download the new beta here (Active Sync installer):
amfw23b.exe

or grab the OTA (over the air) direct-to-PDA installer here:
amfw23bota.CAB

In our labs it has been tested to work on the following devices:
iMate PDA2K
Dell Axim X3
Dell Axim X5
Dell Axim X50
HP IPAQ 4700
Pocket LOOX 600

Beta testers, please email us with your experiences on other devices. Note that the following devices are no longer supported:

Toshiba e800
Ipaq 4150
Dell Axim X30
Ipaq 6315

*** Gartner review of Windows Mobile 2005 security

Gartner, Inc. has released a review of Windows Mobile 2005 messaging security features:
Gartner Review There are no real surprises here for those of us in the security industry, but it should be a wakeup call to those who are depolying PDAs in the enterprise without a well-written security policy. The impressive thing is that Gartner knows what even many Windows Mobile experts don't: that security companies who sell "bit wiping" password bombs for Pocket PC may be misleading you. In order to protect your data, you have to bit wipe the internal and external storage cards first before wiping the RAM with a hard reset. It's a point that few consumers know yet -- which is the way some vendors seem to like it. Buyer beware! Make sure your PDA encryption program has a secure "file shredder" built into the program.

May 11, 2005 - Airscanner Software Update

Airscanner Software Update May 8, 2005

*** Airscanner to speak at Wi-Fi Planet (June 15, 2005)

Airscanner has been selected to speak at Wi-Fi Planet in Baltimore on June 15, 2005. The subject is PDA Insecurity. This talk will demonstrate how a PDA can be exploited using viruses, trojans, direct attacks, and more. We will be speaking at 4:00 pm (Security Wireless Endpoints). If you are attending this conference please drop by for a hands on illustration of PDA attacks, and to say hi.

*** New Smartphone AntiVirus version (1.4)

A new version of the Smartphone AntiVirus has been released. Version 1.4 improves online updating speed. It also fixes the bug on the Samsung i600 that prevented users from updating online. You can download the ActiveSync installer here: http://airscanner.com/downloads/smartphone/smav.exe or the over the air (CAB) installer here: http://airscanner.com/downloads/smartphone/smavota.CAB

*** Reseller Spotlight

UK-based PocketPC Solutions is our featured Reseller this month. Please be sure to visit them at http://www.pocketpc-solutions.co.uk/index.htm

If you are interested in becoming a volume reseller (50 units or more per order), please email us at contact@airscanner.com. Volume resellers earn a 50% margin on sales. We will also customize a product brochure with your logo and contact information: http://airscanner.com/downloads/suite.pdf

*** Firewall update

The current firewall version is 2.3a. This has been tested to be stable by thousands of users. We are still addressing the wifi conflicts on some devices. You can download it here: http://www.airscanner.com/downloads/fw/amfw23a.exe

It has been tested to work on the following devices:

*Dell Axim X30 *Dell Axim X3 Dell Axim X5 Dell Axim X50 HP IPAQ 4700 Pocket LOOX 600 **IPAQ 6315

The following devices are still being debugged: iMate PDA2K QTEK 9090

The following devices will not be supported: Toshiba e800 Ipaq 4150

*Note: On some devices (like the Dell X30 and X3), you may need to disable your Odyssey wireless client in the registry in order to let the firewall work properly. Please visit www.funk.com to find out if your Odyssey client is compatible with your Pocket PC. Here are their version 2.01 release notes: http://www.funk.com/Docs/odycppc201_readme.txt We are also working on an installer that will let you optionally disable the Odyssey client in the registry.

**Note: Some users have reported this to work on the 6315 if you install the latest ROM update from HP.

*** User-submitted tip: "I fixed the problem with connecting to our Cisco wireless network using LEAP. I discovered a notification on Cisco's web site as follows:

'Non-Cisco Aironet Clients Sometimes Fail 802.1x Authentication....

Some non-Cisco Aironet client adapters do not perform 802.1x authentication to the access point/bridge unless you configure Open authentication with EAP. To allow both Cisco Aironet clients using LEAP and non-Cisco Aironet clients using LEAP to associate using the same SSID, you might need to configure the SSID for both Network EAP authentication and Open authentication with EAP.'

Once I had this change made on the Cisco device, all worked perfectly. Hope this helps you in your future challenges. Thanks for your kind support."

--Submitted by Armand Chabot arunner3@hotmail.com (printed here with permission)

To subscribe or unsubscribe, please visit www.airscanner.com.

May 07, 2005 - Airscanner to speak at Wi-Fi Planet (June 15, 2005)

Airscanner has been selected to speak at Wi-Fi Planet in Baltimore on the subject of PDA Insecurity. This talk will demonstrate how a PDA can be exploited using viruses, trojans, direct attacks, and more. We will be speaking at 4:00 (Security Wireless Endpoints). If you are attending this conference please drop by for a hands on illustration of PDA attacks.

For more information on Wi-Fi Planet, check out their site.

Apr 03, 2005 - License Change and new Firewall Alpha

Starting June 1, 2005, Airscanner software will no longer have a freeware version. However, you can still get the software free if you are willing to be a beta tester. In fact, many of you already have been testing the betas, and we really appreciate your feedback. To receive future beta versions, and to keep receiving free software, please sign up for the beta tester mailing list here:
http://airscanner.com/beta

Users who wish to purchase their software may do so here:
http://airscanner.com/cart.html

New Firewall alpha version (2.3a)

For expert users, we have released a new alpha test version of the firewall. You can download the new alpha version here: http://www.airscanner.com/downloads/fw/amfw23a.exe

Please make sure to uninstall previous versions before installing v2.3a.

This version (2.3a) includes a number of usability improvements, including source/destination IP address and port filters in the same rule. For your convenience, rules now also show up by their name in the log.

This version (2.3a) also fixes the wireless (wifi) agent conflict on some devices. It has been tested to work on the following devices:

*Dell Axim X30
*Dell Axim X3
Dell Axim X5
Dell Axim X50
HP IPAQ 4700
Pocket LOOX 600

*Note that on the X3 and X30, some users report difficulty turning off the wifi card after using it for a few minutes. A soft reset will work in this case.

The program does NOT work on the following devices:

**IPAQ 6315
Toshiba e800
Ipaq 4150

**Note: The 6315 model apparently is being pulled from the market. You can read more here.

Please email us at contact@airscanner.com with your results, so we can modify the above list of compatible devices.

Mar 21, 2005 - March 22 2005 Update

Airscanner Software Update March 22, 2005

New version of Pocket PC Encrypter/Shredder app released (v2.2b)

A new version (v2.2b) of Airscanner Mobile Encrypter (new point release) is available now. All users (including v2.1b users) are urged to update is it contains several bugfixes and security updates. You can download it here: http://airscanner.com/downloads/encrypter/encrypter.html

INSTALLATION NOTE: You should first decrypt all your data, then back up all your data, and then uninstall the previous version of the encrypter, before installing the new version.

Latest Pocket PC Antivirus update

Pocket PC antivirus users should update their antivirus to the latest definitions (dated March 20, 2005). Smartphone users do not need to update at this time.

Feb 16, 2005 - Feb 2005 Software Update

Airscanner Software Update
Feb. 16, 2005

New Beta release of Airscanner Mobile Encrypter 2.0

Version 2.0b of Airscanner Mobile Encrypter is now in beta release. You can download it here:

http://airscanner.com/downloads/encrypter/encrypter.html

Get "shredded"! This all-new version includes a secure file wiper to shred or "bit wipe" the data stored on built in memory and external memory cards on your Pocket PC. You can select the number of passes to overwrite up to the DoD recommended 7 passes. We have successfully tested it with PDA forensic tools. Encryption strength has also been updated to 168-bit 3DES, and is now transparent to the user after logging in to the program. You now also have the ability to created encrypted volumes that auto-encrypt themselves after a user-defined number of minutes. You can also choose granular encryption of individual files and folders.

NOTE: This version is not backward-compatible with version 1.0. You will need to decrypt all your files, and then uninstall the old version before upgrading.

Securing Your Wireless PDA Connection

Seth Fogie of Airscanner Corp. has written an article on how to use secure wireless communication with your PDA. The article is published at InformIT.com:
http://www.informit.com/guides/content.asp?g=security&seqNum=84

Pocket IE attacks

Seth Fogie of Airscanner Corp. has discovered some of the first flaws in Pocket Internet Explorer. The exploits allow a remote attacker to compromise the data on your device via a webpage. This is released as proof of concept to educate users on the importance of caution when using Windows Mobile devices. You can test your Pocket PC on the following test page (for experts only):
http://www.airscanner.com/tests/ie_flaw/ie_attack.htm

New Smartphone Activesync installer v1.2

Version 1.2 of Airscanner Mobile Antivirus for Smartphones now includes online updating. You now also have the option to download the installer directly to your device, or you can install it from your desktop via Activesync. You can get the program here:
http://airscanner.com/downloads/smartphone/smav.html
We are also pleased to let you know that Airscanner Mobile Antivirus for Smartphones has received logo certification from Microsoft.

Jan 19, 2005 - Dell Axim firewall workaround

Some users have noticed that the Airscanner firewall has a conflict with the built-in WiFi access point discovery tool on the Dell Axim X30. The conflict seems to be tied to the non-standard WLAN built into the X30s. For now, as a workaround you can try using the following 3rd party WiFi discovery program on your X30.

http://www.airscanner.com/downloads/fw/WMAGS46.exe

The following note is courtesy of user Simon G:

"A quick test of Agere utility shows that it perfectly interoperates with CheckPoint SecureVPN client, where Dell Wireless utility didn't work. One weak point - this utility requires Wireless Zero Configuration to be enabled, which leads to constant pop-ups when multiple Wi-Fi networks are available. The Odyssey client can work without Wireless Zero Configuration. Also, disabling of Wireless Zero Configuration wipes out its connectivity database, forcing the user to re-enter all SSID and WEP or WPA key values if he decides to use it again.

Another utility I loooked on was Cirond's PocketWinc (www.cirond.com), which is another wireless client. Unfortunately, it doesn't currenlty support WPA and requires the Odyssey client to be removed from the system."

Please also note our security advisory here regarding the Axim's Odyssey client:
http://airscanner.com/blog/blog.php?blogid=0501151031

Jan 16, 2005 - Jan 10 Newsletter

Airscanner Software Update Jan 10 2005

*** Smartphone AV 1.2 point release now has online updating

Airscanner Corp. has released an updated version of its Antivirus for Windows Mobile Smartphones. This version includes built-in, on line updating. Thank you to the thousands of users who beta tested it. You can download the Smartphone Antivirus as a CAB installer:

http://airscanner.com/downloads/smartphone/smav.html

Simply uninstall your older version and re-install the new download directly on your device (CAB installer). Future on-line updates will allow both signatures and scanning engine to be updated automatically.

*** Calling embedded cryptography and PDA forensics beta testers

The new version of Airscanner Mobile Encrypter is currently in final alpha testing. Features include transparent, easy to use encryption and updated bit strength. It also has a new bit-wiping, file shredder that overwrites data with up to seven passes. If you are interested in cryptography or forensics beta testing of this version, please contact us at contact@airscanner.com.

*** Antivirus for Windows Mobile Pocket PC 2.91 point release

This is a minor bug fix: on some newer devices the process spy (our Pocket PC version of the Windows task manager) wasn't working. This has now been fixed; the process manager should now work on all devices. This will allow you to uncover and remove trojan horses (such as Brador) and other spyware. You can get the update through the program's built-in online updating feature.

*** Firewall X30 hack

Some users have noticed that the Airscanner firewall interferes with the built-in WiFi access point discovery tool built in to the Dell Axim X30. The conflict seems to be tied to the Agere wlan card used in X30s. For now, as a workaround you can use the following 3rd party WiFi discovery program on your X30.

http://www.airscanner.com/downloads/fw/WMAGS46.exe

This conflict varies from device to device; for example, the Dell Axim X50 does not have this conflict (since it uses a different internal WiFi card.) For users who have a conflict on other devices, please contact us with your device make and model at contact@airscanner.com. We currently have two teams of programmers working on this interesting and important bug.

*** Congratulations to Jonathan Read

Please help us congratulate Jonathan Read, who passed his CISSP exam and who is now Product Manager of Airscanner Corp.

*** Airscanner to speak at RSA security conference

Airscanner Corp. has been selected to speak at the prestigious RSA Security Conference on Feb. 18, 2005 in San Francisco's Moscone Center. The subject will be "Airborne Viruses." We hope to meet some of you there.

Jan 15, 2005 - Windows Mobile Odyssey WEP Key Exposure

Airscanner discovered a serious flaw in the way the Windows Mobile, the Funk Odyssey client, and the Axim wireless drivers handle WEP key data (A05 firmware fixes problem).

The Oddessy client included with the Dell X50 stores the WEP keys as an encrypted string in the registry. However, once the driver is loaded, and they Oddessy client is loaded, the keys will be written in an unecnrytped format to a different part of the registry. The problem is not specifically Funk's, as they do encrypt the key, but more of a flaw in how all three (Windows Mobile, Dell wireless driver, Odyssey) work together. However, if you do not use the Odyssey client, you will not be vulnerable. The following illustrates: Byte 5 - 9 list my entered WEP keys for each entry.

>KEY4=6677889900
>KEY3=1122334455
>KEY2=eeffddeeff
>KEY1=aabbccddee

[HKEY_LOCAL_MACHINE\Comm\TIACXWLN1\Parms]
"HTCWEPDefaultKey4"=hex:
01,00,00,00,66,77,88,99,00,8c,f6,36,1d,af,90,17,5b,00,f6,36,1d,af,00,00,00...

"HTCWEPDefaultKey3"=hex:
01,00,00,00,11,22,33,44,55,8c,f6,36,1d,af,90,17,5b,00,f6,36,1d,af,00,00,00...

"HTCWEPDefaultKey2"=hex:
01,00,00,00,ee,ff,dd,ee,ff,8c,f6,36,1d,af,90,17,5b,00,f6,36,1d,af,00,00,00...

"HTCWEPDefaultKey1"=hex:
01,00,00,00,aa,bb,cc,dd,ee,8c,f6,36,1d,af,90,17,5b,00,f6,36,1d,af,00,00,00...

This could be a serious problem if a PDA is lost or borrowed. Since this information is stored as plaintext, anyone could read it and gain access to the WEP protected network.

Credits: Seth Fogie
Dell was informed 11/10/2004, but did not respond.
Funk contacted us 08/16/2005 with a minor correction.
A05 ROM upgrade (08/18/2005) appears to correct the problem.

Jan 15, 2005 - Airscanner to speak at RSA 2005

Airscanner will be speaking at RSA 2005. Dr. Cyrus Peikari will discuss the state of the art of "Airborne Viruses" on Feb. 18 at 11 am in the Moscone Center, San Francisco.

We hope to meet some of you there.

Other Recent Blogs...

Mar 10, 2008 - March 2008 Airscanner Software Update

***Airscanner wins "Best Security Software of the Year"

***New ALPHA release of Airscanner Firewall (v3.0a) for Windows Mobile handhelds (Experts only)

NOTE: Firewall is out of Alpha is can be downloaded (trial version) from our main product page.

Oct 03, 2007 - Airscanner Software Update (October 2007)

Airscanner Software Update - October 2, 2007

We hope you enjoy this exciting new suite of tools. We look forward
to hearing from you!

Aug 15, 2007 - Airscanner Software Update (August 2007)

Airscanner Software Update August 14, 2007

*** New Windows Mobile SafeMode tool released in alpha version

You can read the user's manual online here: http://www.airscanner.com/downloads/safemode/SafeMode_Manual.pdf

You can download the test version here: http://www.airscanner.com/downloads/safemode/asmsftool.exe http://www.airscanner.com/downloads/safemode/asmsfOTA.CAB

*** Airscanner protects from Cain and Abel mobile

*** Direct updater for Windows Mobile

For corporate admins who must update internal devices from behind a firewall, Airscanner has a direct antivirus updater Network admins can use the following links:

*** Airscanner presentations

*** New book from Airscanner

*** Advisories

The following describes several vulnerabilities Airscanner has discovered in recent weeks.

Minimo .2 Password Manager Vulnerability - http://airscanner.com/security/07080103_minimo.2.htm

Creative Iye iPassword 3.0 Password Disclosure Vulnerability - http://airscanner.com/security/07080101_ipassword3.htm

MyCnknow Eye On Privacy 0.60(2007.04.10) Password Disclosure Vulnerability - http://airscanner.com/security/07080102_eyeonprivacy.htm

Airscanner Mobile Security Software: voted Best Security Software for 2005 by the Smartphone and Pocket PC Magazine Board of Industry Experts.

Apr 23, 2007 - Airscanner Software Update (Apr. 2007)

Airscanner Software Update
April 22, 2007

*** Seth Fogie reveals Windows Mobile application security weaknesses

Seth's slides from the presentation are available here:
http://www.airscanner.com/pubs/shmoo2007_conference.pdf

A free download of the complete video from Seth's Shmoocon talk is available upon request. Note that is for advanced/expert users, and it is a very large download (170MB).

*** New sniffer release v2.5

The following are the links to the new shareware version of the sniffer:

Active Sync 30-day trial installer (WM5):
http://airscanner.com/downloads/sniffer/amsniffersigned.exe

Direct from PDA/OTA (.CAB file) 30-day trial installer (WM5):
http://airscanner.com/downloads/sniffer/amsniffersignedOTA.CAB

*** Clinton Fitch reviews Airscanner Mobile Antivirus

Read the new antivirus review by Clinton Fitch, a long-time supporter of the Windows Mobile enthusiast community:
http://www.clintonfitch.com/reviews/airscanner/antivirus-3-0/default.asp

*** New Blackjack Antivirus Version

*** R-PDA support added

Airscanner Mobile Security Software: voted Best Security Software for 2005 by the Smartphone and Pocket PC Magazine Board of Industry Experts.