Overview
Explore over 200 vulnerabilities in Android phones discovered through an in-depth analysis of Samsung devices at this HITB Security Conference talk. Delve into the Android fragmentation problem and its impact on security issues. Learn about vulnerabilities affecting popular Samsung models like S8+, S7, and Galaxy C9 Pro, including a critical settings flaw that bypasses authentication mechanisms and compromises payment functions. Compare vulnerabilities across different Android platforms like Huawei. Examine the differences between Samsung's Android OS variants and Google's AOSP, analyzing how these variations lead to unique vulnerabilities. Gain insights into typical patterns of inappropriate AOSP implementation and modification on Samsung devices. Witness live demonstrations or video presentations of these security flaws, and understand their implications for Android phone security.
Syllabus
Introduction
Android fragmentation
Problem
Motivation
System Crash
Array Index
Bootloop
System Reset
Remote Access
Authentication Bypass
Biometrics Bypass
Face Recognition Bypass
Taught by
Hack In The Box Security Conference