Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Cloak & Dagger - From Two Permissions to Complete Control of the UI Feedback Loop

Black Hat via YouTube

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a critical Android security vulnerability in this 45-minute Black Hat conference talk. Delve into how combining the SYSTEM_ALERT_WINDOW and BIND_ACCESSIBILITY_SERVICE permissions enables complete control of the UI feedback loop, leading to devastating and stealthy attacks. Learn about context-aware clickjacking, obscured flag bypass, context hiding, and invisible grid attacks. Examine design shortcomings in Android's security mechanisms and their implications for traditional phishing and ransomware. Discover the Android security team's response, proposed solutions for securing Android UI, and the current state of security updates. Gain insights into detecting Cloak & Dagger attacks and understand the evolving landscape of Android security vulnerabilities.

Syllabus

Intro
What is this work about?
Why would a user grant these permissions?
Security Mechanism #1
Security Mechanism #3
Attack: Context-aware Clickjacking
Obscured Flag Bypass
Attack: Context Hiding
Attack: Invisible Grid Attack
Design Shortcomings
Cloak & Dagger attacks
Traditional Phishing
Ransomware Example
How is the Android security team reacting?
Securing Android UI
What happened next...
Detect Cloak & Dagger
Let's go one step further...
Current state of Android security updates

Taught by

Black Hat

Reviews

Start your review of Cloak & Dagger - From Two Permissions to Complete Control of the UI Feedback Loop

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.