SMS PVA Services Fueled by Compromised Supply-Chain Mobile Botnets

Explore the inner workings of SMS PVA service providers and their connection to compromised supply-chain mobile botnets in this 33-minute Black Hat conference talk. Delve into the modus operandi of a specific SMS PVA service provider, examining the design and operations of the uncovered botnet. Learn about the use and misuse of PVA services by various threat actors. Gain insights into the potential infection methods of devices before they reach end users. Presented by Paul Christian Pajares, Vladimir Kropotov, and Zhengyu Dong, this talk offers a comprehensive look at the intersection of SMS verification services and mobile security vulnerabilities.