Poisoned - How Do We Find Them?

Presented at Objective by the Sea version 6.0 (2023), Oct. 12, 2023, 3:30 p.m. (25 minutes).

At last years #OBTS, I gave a talk on the threat of spyware on iOS devices and highlighted notable malware such as NSOs infamous Pegasus. But, unfortunately, I could not talk about the methods on how to detect iOS malware on your device. That changes now! This year, I will provide updates on research into iOS malware, specifically Operation Triangulation, Pegasus 2023, and Quadream Reign. I will explain which forensic methods and types of IOCs are used to detect them. \n\n Additionally, I will discuss how journalists, human rights activists, companies, or anyone else can support the analysis of spyware by creating forensic artifacts. As this is often a complicated step for people who are not familiar with the process, I will do a live demonstration. The demo will show all the steps necessary and introduce tools that can be used to make the analysis easier.\n\n I will close the talk with an analysis of the current state of iOS Malware detection and recommendations for individual people, and companies to make the discovery of infections a lot easier.

Presenters:

  • Matthias Frielingsdorf - iOS Security Researcher at iVerify
    Matthias day to day job is researching iOS‘s security and finding means to detect iOS Malware at iVerify. Previously, he worked to secure Deutsche Bahn’s Smartphones and Tablets and tested mobile security software and upcoming security products for T-Systems. Matthias is passionate about all things related to iOS security. \n\n When he’s not playing basketball or games he loves to spend his time learning new things around iOS.

Links:

Similar Presentations: