Own the malware adm1ns :D. ⢠Install Zitmo on lab phone 1. ⢠Send SET ADMIN command by. SMS with phone number of lab phone 2. Mobile malware in ...
Mobile Malware .. In Practice or Once bitten, twice shy... and third stolen Chat ´echaud´e craint l’eau froide Axelle Apvrille Fortinet, AV Lab
Insomni’Hack, March 4 2011
Summary
Would you install this? Once bitten Twice shy... Third stolen Conclusion Mobile Malware Status Infection Symptoms Solutions
Mobile malware in practice - A. Apvrille
2/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application?
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application?
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application? • Security warning for all unsigned midlets
(common!)
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application? • Security warning for all unsigned midlets
(common!) • Lengthy security text :(
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application? • Security warning for all unsigned midlets
(common!) • Lengthy security text :( • Standard Opera splash screen
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application? • Security warning for all unsigned midlets
(common!) • Lengthy security text :( • Standard Opera splash screen
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application? • Security warning for all unsigned midlets
(common!) • Lengthy security text :( • Standard Opera splash screen
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application? • Security warning for all unsigned midlets
(common!) • Lengthy security text :( • Standard Opera splash screen • Send SMS to short code, not so surprising
for dating/ divination services
Mobile malware in practice - A. Apvrille
3/18
Would you install this? [EASY] Imagine you want to date or divination services, would you use this Opera add-on application? • Security warning for all unsigned midlets
(common!) • Lengthy security text :( • Standard Opera splash screen • Send SMS to short code, not so surprising
for dating/ divination services
Meet Java/GameSat.A!tr This is a malicious midlet! Do not use! Risks are difficult to understand for an end-user
Mobile malware in practice - A. Apvrille
3/18
Java/GameSat.A!tr: Sending SMS A few lines of code - Simple! import javax.wireless.messaging.MessageConnection; import javax.wireless.messaging.TextMessage; [..] public final void run() { try { String str = "sms://" + this.a; //
Then autput can be classically efficiently sumulokd.. More preuvely: com Compude (fatafont)=Po -Py iw poly time.O will quwe proof & funthus rguh cance of nn, ...
Justifications Axiomatic (concave, subadditive, invariant) l Equiprobability for .... Scalar curvature R = function of or degree of polarisation) r41, Rw-tom? Benistus ...
Aug 29, 2009 - (âhealth insuranceâ, âclimate changeâ, ânational securityâ, âsuper Tuesdayâ .... common âresourceâ and a set of citation links between blogs.
May 10, 2010 - Kernel.jsp. Download appropriate ... Download Yxes variant from remote server. Store in .... Signed with a developer certificate (basic capabilities only) ... SKServer hide.sisx contains SMS text 'A very interesting sexy game!'.
-rw-r--r-- 1 axelle axelle 664 Dec 20 03:36 CERT.RSA ... Enumerate all apps, collecting meta data â Often new apps ..... Data mining to compute weights.
Roadmap. I. Introduction (problem statement + data model). II. State of the art (Localization via Capon beamforming and MUSIC). III. Localization via PARAFAC.
Mar 4, 2014 - Proof using the coupling technique main problem: given l queries, upper bound the probability that, for every two consecutive rounds, the l + ...
There's an Android app for the alarm. â· Protect your house against burglars. â· Controllable by SMS. But it's not very user friendly... Comply to a strict SMS ...
May 10, 2010 - Decryption of malicious URLs. ⢠Silent installation of ... Self Signed, Open Signed Online insufficient: ... PETRAN - PE file preprocessor V02.01 (Build 576). Copyright (c) .... Download Yxes variant from remote server. Store in ...
C tx n n. ∆. = ),( α. (3) Define duration so that the dynamics looks simple. t m n. ∆. = η. Fluctuations: ab n b n a n ww δ α. 1. =〉∆∆〈 mass ab n t m δ η. ∆. = clocks ...
Package's zip date. -rw-r--r-- 1 axelle axelle 664 Dec 20 03:36 CERT.RSA ... Enumerate all apps, collecting meta data â Often new apps ... Must mock an actual device â Only see applications viewable ..... Data mining to compute weights.
Charles Minard (1869) map graph was quoted by E. Tufte as. âthe best ... First on geography ... more complex and we can find approximations in the map :.
Aug 27, 2012 - 3 (not a triangle), 2 (equilateral), 1 (isosceles), 0 (other). Robust : validity of inputs is tested ..... go looking for bugs by sub-dividing the paths ...
Relative completeness : why it does not work (general case) let us suppose Kmax = 1. 1. x :=1, goto 2. 2. if x==1 then goto 3 else goto 4. 3. t :=100, goto 5.
No need to mention that the practitioner has ... Notice that the supplementary information don't intervene in any way in the calculus of the vectors Fs and Gs but ... athletics meeting (2004 Olympic Game or 2004 Decastar). By default, the PCA ...