Charge Your Device with the Latest Malware

Presented at Black Hat Europe 2014, Oct. 16, 2014, 4 p.m. (30 minutes).

I'll expose USB vulnerability in some vendor's customization of the Android system, I'll also target that vulnerability in a specific vendor, together with a proof of concept of the attack and practical scenario environment, and I will unveil the implications of such vulnerability. Culminating in the flashing of a compromised boot partition, and root access.

Presenters:

• Andre Pereira - INESC CRACS
  My name is Andre Pereira, I'm 24 years old, from Portugal, Oporto and my hobbies are computers, football, and the fine arts, specially comedy. I will soon earn masters degree in computer networking from the University of Porto. I also started working at C3P / INESC CRACS (Center for Research in Advanced Computing Systems). This work comes from a master thesis proposal, on android USB security, with professor Pedro Brandao, and Manuel Correia. We successfully carried out the thesis, and we were to publish it as a paper in CMS14 in aveiro.

Links:

• https://www.blackhat.com/eu-14/briefings.html#Pereira
• https://infocon.org/cons/Black Hat/Black Hat Europe/Black Hat Europe 2014/Video/Charge Your Device with the Latest Malware.mp4
• https://www.youtube.com/watch?v=6CPuD_nWBLw
• https://www.blackhat.com/docs/eu-14/materials/eu-14-Pereira-Charge-Your-Device-With-The-Latest-Malware.pdf

Similar Presentations:

• Black Hat USA 2014 / Android FakeID Vulnerability Walkthrough
• Black Hat USA 2013 / Android: One Root to Own them All
• Black Hat USA 2011 / USB: Undermining Security Barriers