infosec-news January 2011 archive
Main Archive Page > Month Archives  > infosec-news archives
infosec-news: [ISN] ShmooCon 2011: Your Android's dirty little s

[ISN] ShmooCon 2011: Your Android's dirty little secret

From: InfoSec News <alerts_at_nospam>
Date: Mon Jan 31 2011 - 07:12:38 GMT

By Bill Brenner
Senior Editor
January 29, 2011

WASHINGTON, D.C. -- Presenters at the ShmooCon security conference have
spent much attention on mobile vulnerabilities in the last couple years,
and several attendees this year say it's a topic of major importance to

Last year, a talk focused on weaknesses in the iPhone. This year, two
researchers have targeted all their firepower on the Android.

In this morning's presentation, Jon Oberheide, CTO of DUO Security, and
Zach Lanier, a senior consultant with the Intrepidus Group who
specializes in network and web application penetration testing, walked
attendees at ShmooCon 2011 through a series of weaknesses they
discovered in the device at the kernel, platform and application levels.

Among their findings:


Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery
Network, Cisco Switches, SAS 70 Type II Datacenter.
Find peace of mind, Defend your Critical Infrastructure.