October 2024 Event: Mobile Vulnerabilities - Exploiting Mobile Firmware and Apps

Date: 
Tuesday, October 15, 2024 - 5:30pm
RSVP: 
https://lu.ma/ag68idsk?utm_source=sv-issa.org
Topic: 

With over 3 billion active devices this year, Android dominates the global mobile market with a 70.69% market share. But with this widespread usage comes an increasing number of vulnerabilities. In this event, we will dive deep into the world of Android app and firmware exploits and showcase live demonstrations of a few key exploits. Attendees will gain a clear understanding of how interprocess communication, privileged apps, and Android's interprocess communication models can lead to common exploit patterns resulting in data leakage or exposing personally identifiable information (PII).

​Join us for a hands-on session that not only highlights the risks but also provides practical insights into how these exploits work and how to mitigate them in your own apps and systems.

Key Topics Covered Will Include:

  • ​Common exploit patterns in Android apps and firmware

  • ​How interprocess communication creates vulnerabilities

  • ​Exploiting privileged apps for data leakage

  • ​A live demo of key Android exploits with step-by-step walkthroughs

  • ​Protecting data and minimizing personally identifiable information (PII) exposure

Why Attend?

  • Live Demonstrations: See real-world Android exploits in action with a guided walkthrough for each.

  • Practical Takeaways: Learn how to identify and mitigate mobile vulnerabilities in your own development and security operations.

  • Expert Insights: Gain knowledge from an industry expert with years of hands-on experience in mobile app testing and security.

  • Cutting-Edge Knowledge: Stay informed about the latest trends and threats in the rapidly evolving mobile security landscape.

  • Interactive Learning: Understand the technical aspects of Android exploits through live demos and actionable insights.

​​​Agenda:

  • ​​​5:30 - 6:00 | In-person Networking

  • ​​5:55 - 6:00 | Virtual Session Starts

  • ​​​6:00 - 6:15 | ISSA Chapter Business

  • ​​​6:15 - 7:00 | Presentation

  • ​​​7:00 - 8:00 | Food & Refreshments

Speaker: 

lya Quokka

Ilya Dreytser has been testing mobile apps for security, performance, and functionality for the past 7 years. A seasoned expert in mobile app security, Ilya has presented at DroidCon and other notable events. Known for his engaging speaking style, Ilya’s journey began as a developer before transitioning into security testing. He has a unique ability to break down complex mobile vulnerabilities into easy-to-understand concepts while providing real-world solutions. When he's not diving into mobile security, you might catch him enjoying the sunshine after years of basement coding! Ilya is currently at Quokka.

 

 

 

 

Location: 

Register to see address