A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Subscribestar or Patreon

Search Irongeek.com:

Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:


Clientless Android Malware Control - David Schwartzberg Converge 2015 (Hacking Illustrated Series InfoSec Tutorial Videos)

Clientless Android Malware Control
David Schwartzberg

A world without malware is ideal but unlikely. Many of us would prefer *not* to install another layer of protection on their already resource constrained handheld mobile device. Alternatively, Android malware detection sans local anti-virus installation has become a reality. Learn about how it's possible to detect mobile malware using simple text messages with [ZitMo NoM](http://www.zitmonom.org/). ZeuS in the Mobile, known as ZitMo, is infamous for intercepting SMS transmissions then redirecting them to a Command & Control in order steal banking and personal information. Research with SMS transmissions directed at mobile malware has resulted in the ability to detect ZitMo's presence without anti-virus applications installed. Turning their own tools against them makes this even more of a rewarding endeavor. We are looking for malware researchers to contribute to the continued development of this open tool. The presentation will include the research, the infrastructure and a demonstration of ZitMo NoM. Live malware will be used during this presentation, assuming we get it to behave.

David Schwartzberg is a Sr. Security Engineer at [MobileIron](http://www.mobileiron.com), a mobile security company, where he specializes in mobile and network security. Utilizing his 6 years accounting experience and combined 17 years InfoTech and InfoSec experience, he speaks regularly with technology executives and professionals to help protect their corporate secrets and stay compliant. In his spare time he created [Hak4Kidz](http://www.hak4kidz.com/), www.hak4kidz.com, and has blogged for [Dark Reading](http://www.darkreading.com/author-bio.asp?author_id=1206), Naked Security and Barracuda Labs. He has spoken at conferences such as Black Hat Arsenal, BSides, Converge, DerbyCON, GrrCON, OWASP AppSec, THOTCON, Wall of Sheep Village, (ISC)2 Congress and several others. David has earned several certifications in the field of Information Technology and Information Security. If you need to know the list of certifications, that's what [LinkedIn](https://www.linkedin.com/in/davidschwartzberg) is for. Twitter [@DSchwartzberg](https://twitter.com/dschwartzberg)

Back to Converge 2015 video list

Printable version of this article

15 most recent posts on Irongeek.com:

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast