Explore a critical security vulnerability in Android smartphones that allows remote attackers to control, capture, and retrieve photos, videos, and geolocation data without user knowledge, even when the device is locked or the screen is off. Delve into the process of chaining multiple weaknesses and features to create a fully weaponized rogue spy-application. Gain insights from Erez Yalon, Director of Security Research at Checkmarx, as he presents this 25-minute RSA Conference talk. Understand the implications of this security flaw and learn how it exploits Google Assistant functionality. Recommended for those with a general understanding of application security, vulnerability exploitation, and remediation.
Overview
Syllabus
Hey Google, Activate Spyware! When Google Assistant Uses a Vulnerability as a Feature
Taught by
RSA Conference