Meet Two Security Researchers Apple Hates (Video)
This video is a half-hour speech given by Dino Dai Zovi and Charlie Miller, two people Apple corporately hates because of their success in finding security holes in Apple operating systems and software. Both Charlie and Dino have been mentioned on Slashdot before and probably will be again. This is a chance to see how they sound and look in person, talking to a small "by invitation only" group. They have a book to push, too: The iOS Hacker's Handbook. (Please note that this book is supposed to help you secure iOS and iOS apps, not exploit security holes in them.)
apple
charlie miller
dai
dino
handbook
invitation
ios
security
slashdot
zovi
Found more than 1 month ago on channel
Slashdot
Serial iPhone and Mac hacker Charlie Miller takes job at Twitter
The hire signals the microblogging site's growing commitment to security.
charlie miller
commitment
iphone
mac
security
twitter
Researchers Beat Google's Bouncer
An anonymous reader writes "When earlier this year Google introduced Bouncer — an automated app scanning service that analyzes apps by running them on Google's cloud infrastructure and simulating how they will run on an Android device — it shared practically nothing about how it operates, in the hopes of making malicious app developers' scramble for a while to discover how to bypass it. As it turned out, several months later security researchers Jon Oberheide and Charlie Miller discovered — among other things — just what kind of virtual environment Bouncer uses (the QEMU processor emulator) and that all requests coming from Google came from a specific IP block, and made an app that was instructed to behave as a legitimate one every time it detected this specific virtual environment. Now two more researchers have effectively proved that Bouncer can be rather easily fooled into considering a malicious app harmless."
android device
bouncer
charlie miller
environment
google
jon
oberheide
qemu
security
service
Found more than 1 month ago on channel
Slashdot
Head of iOS security to speak at Black Hat for the first time
Researcher Charlie Miller isn't sure the talk will offer much new info, though.
charlie miller
hat
ios
security
Researchers Find Methods For Bypassing Google's Bouncer Android Security
Trailrunner7 writes "Google's Android platform has become the most popular mobile operating system both among consumers and malware writers, and the company earlier this year introduced the Bouncer system to look for malicious apps in the Google Play market. Bouncer, which checks for malicious apps and known malware, is a good first step, but as new work from researchers Jon Oberheide and Charlie Miller shows, it can be bypassed quite easily and in ways that will be difficult for Google to address in the long term. Oberheide and Miller, both well-known for their work on mobile security, went into their research without much detailed knowledge of how the Bouncer system works. Google has said little publicly about its capabilities, preferring not to give attackers any insights into the system's inner workings. So Oberheide and Miller looked at it as a challenge, an exercise to see how much they could deduce about Bouncer from the outside, and, as it turns out, the inside."
android
bouncer
capabilities
charlie miller
google
jon
oberheide
security
trailrunner
Found more than 1 month ago on channel
Slashdot