Το iOS έχει χακαριστεί, το Android είναι φημισμένο για ιούς, το μόνο που ξέφυγε είναι το Windows Phone 7 που τώρα με την ανάπτυξη του σίγουρα είναι στόχος για την ασφάλεια και για τα πολλά κλειδώματα που έχει. Από την Deepsec στην Βιέννη έχουν ανακοινώσει ότι ήρθε η σειρά της Microsoft να χακαριστεί. Δείτε την ανακοίνωση :
The talk will aim to provide an introduction into the Windows Phone 7 (WP7) security model to allow security professionals and application developers understand the unique platform security features offered. Currently very little public information is available about Windows Phone 7 OS security preventing adequate determination of the risk exposed by WP7 devices.The ever increasing challenges and stages of exploitation an attacker has to overcome to achieve full compromise will be discussed. The talk will outline the implementation of these security features and will demonstrate weaknesses and vulnerabilities an attacker could use to bypass the multiple levels of platform security.A number of OEM manufacturer weaknesses, “features?” will be discussed and a demonstration of how these “features” can be abused in conjunction with conventional exploits to achieve full compromise of the phone will be performed. The talk will demonstrate how OEM phone manufacturers can weaken the security posture of an otherwise strong granular security model and also demonstrate how targeted attacks can be made which leverage this OEM “functionality” to compromise sensitive information.
Δεν υπάρχουν σχόλια:
Δημοσίευση σχολίου