With some financial institutions implementing two-factor authentication, miscreants were observed utilizing mobile Remote Access Trojans (RATs) to capture these SMS PINs for account takeover. This presentation will explore recent campaigns that have used mobile RATs to defeat two-factor systems, the challenges for mitigating this new breed of user attacks, and the vulnerabilities of these cybercrime kits.

Speaker Bio: Paul Burbage is an avid network security enthusiast with over fifteen years of experience. He currently works as a threat researcher / malware analyst at PhishLabs in Charleston, SC.

@hexlax

Back to Derbycon 2015 video list