Last Tuesday, Patrick Szeto and I presented “Bust a Cap in a Mobile App” at SecTor, our talk about pentesting Android applications. The slides are available here: Download PPT.

At Security Compass, we have been working hard to expand our training offerings. We’re most excited about our new Mobile Hacking and Security course. If your organization is working with mobile applications this course is a fantastic primer on how mobile apps can be hacked, and how your teams can defend against these software defects. We’ll…

Max Veytsman and Subu Ramanathan have just returned from presenting mobile security talks at ToorCon in San Diego and the MISTI Mobile and Smart Device Conference in Atlanta. The talks were entitled “Bust a Cap in an Android App” and “DEEP DIVE: Pentesting the Android and iPhone” Both slide decks are available below: Download “DEEP…

This video demonstrates how to bypass the password screen on an android. If you lose your phone, someone who finds it can use this attack to get around the password you set. This attack requires a phone with an unlocked bootloader. Some phones come with unlocked bootloaders, and on others users do this as part…

It is a well-documented fact that information transfer over the internet is transitioning over to mobile devices at an alarming rate. Here are some links that provide a high level statistical view of my claim (often, some simple Google-fu will yield the same results): Mobile Applications Downloads Approached Eight Billion in 2010: http://www.itu.int/ITU-D/ict/newslog/Mobile+Applications+Downloads+Approached+Eight+Billion+In+2010.aspx Global Mobile Statistics…

Are you interested in mobile application security? Max Veytsman, a security consultant at Security Compass, will be speaking on this hot topic at the next OWASP Toronto chapter meeting. Come and check it out! Date/Time: May 11th, 2011, 5:00-6:00 PM EST Location: Auditorium C, 315 Front Street West, Toronto, ON M5V 3A4 Length: 60 minutes Title: Mobile Security…