Upload File

an overview of mrats

28
An Overview of Mobile Remote Access Trojans (mRATs) and Targeted Mobile Attacks

Upload: lacoon-mobile-security

Post on 05-Dec-2014

930 views

Category:

Technology


1 download

Report

DESCRIPTION

 

TRANSCRIPT

Page 1: An Overview of mRATs

An Overview of Mobile Remote Access Trojans (mRATs) and Targeted Mobile Attacks

http://www.lacoon.com/
http://www.Lacoon.com
Page 2: An Overview of mRATs

Agenda

●  The Collapse of the Corporate Perimeter ●  Mobile Remote Access Trojans (mRATs)

What do they do?

What types are there?

●  Real-Life mRAT statistics ●  Infection vectors ●  Follow up videos

http://www.lacoon.com/
Page 3: An Overview of mRATs

The Collapse Of The Corporate Perimeter

http://www.lacoon.com/
Page 4: An Overview of mRATs

The Collapse Of The Corporate Perimeter

http://www.lacoon.com/
Page 5: An Overview of mRATs

The Collapse Of The Corporate Perimeter

“More than

60% of organizations enable BYOD” Gartner, Inc. October 2012

http://www.lacoon.com/
Page 6: An Overview of mRATs

The Collapse Of The Corporate Perimeter

http://www.lacoon.com/
Page 7: An Overview of mRATs

MOBILE REMOTE

ACCESS TROJANS (mRATs)

http://www.lacoon.com/
Page 8: An Overview of mRATs

mRAT Capabilities

Snooping on corporate emails and application data

http://www.lacoon.com/
Page 9: An Overview of mRATs

mRAT Capabilities

Eavesdropping

Snooping on corporate emails and application data

http://www.lacoon.com/
Page 10: An Overview of mRATs

mRAT Capabilities

Eavesdropping

Extracting contact lists, call &text logs

Snooping on corporate emails and application data

http://www.lacoon.com/
Page 11: An Overview of mRATs

mRAT Capabilities

Eavesdropping

Extracting contact lists, call &text logs

Tracking location

Snooping on corporate emails and application data

http://www.lacoon.com/
Page 12: An Overview of mRATs

mRAT Capabilities

Eavesdropping

Extracting contact lists, call &text logs

Tracking location

Snooping on corporate emails and application data

Infiltrating internal LANs

http://www.lacoon.com/
Page 13: An Overview of mRATs

TYPES OF mRATS

http://www.lacoon.com/
Page 14: An Overview of mRATs

The mRAT Threat-scape

mRATs / Spyphones

High End: Government / Military grade

Mid Range: Cybercrime toolkits

Low End: Commercial surveillance toolkits

http://www.lacoon.com/
Page 15: An Overview of mRATs

HIGH END: GOV / MIL mRATs

High End Mid Range Low End

http://www.lacoon.com/
Page 16: An Overview of mRATs

High-Profiled Example

http://www.lacoon.com/
Page 17: An Overview of mRATs

MID: CYBERCRIME TOOLKITS

High End Mid Range Low End

http://www.lacoon.com/
Page 18: An Overview of mRATs

High-Profiled Example

http://www.lacoon.com/
Page 19: An Overview of mRATs

LOWER END: COMMERCIAL

SURVEILLANCE TOOLKITS

High End Mid Range Low End

http://www.lacoon.com/
Page 20: An Overview of mRATs

Commercial mobile surveillance tools

http://www.lacoon.com/
Page 21: An Overview of mRATs

REAL-LIFE STATISTICS

http://www.lacoon.com/
Page 22: An Overview of mRATs

Infection rates:

June 2013:

1 / 1000 devices

Survey: Cellular Network 2M Subscribers Sampling: 650K

http://www.lacoon.com/
Page 23: An Overview of mRATs

Survey: Cellular Network 2M Subscribers Sampling: 650K

http://www.lacoon.com/
Page 24: An Overview of mRATs

Android iOS-based devices

Infection Vectors

http://www.lacoon.com/
Page 25: An Overview of mRATs

Infection Vectors

For more Information: Coming soon…

“Cyber-Threats to Android-Based Devices” “Cyber-Threats to iOS-Based Devices”

Lacoon Mobile Security YouTube Channel

http://www.lacoon.com/
http://www.youtube.com/user/LacoonSecurity
http://www.youtube.com/user/LacoonSecurity
Page 26: An Overview of mRATs

MOBILE DEVICE MANAGEMENT

(MDM) SOLUTIONS DO NOT

ADDRESS THIS THREAT

http://www.lacoon.com/
Page 27: An Overview of mRATs

An Anatomy of an Attack against MDMs

For more Information:

“Bypassing Secure Containers on Mobile”

Lacoon Mobile Security YouTube Channel

http://www.lacoon.com/
http://www.youtube.com/watch?v=pXdGjDgpq0U&feature=c4-overview&list=UUhMyKarbGLQSJDMJHgudhnA
http://www.youtube.com/user/LacoonSecurity
http://www.youtube.com/user/LacoonSecurity
Page 28: An Overview of mRATs

Thank You.

@LacoonSecurity Lacoon Mobile Security [email protected]

http://www.linkedin.com/company/lacoon-mobile-security
http://www.linkedin.com/company/lacoon-mobile-security
https://twitter.com/LacoonSecurity
https://twitter.com/LacoonSecurity
http://www.Lacoon.com
mailto:[email protected]

An overview of the valuation of collateralized derivatives ...laurent.jeanpaul.free.fr/An overview of the... · An overview of the valuation of collateralized derivatives contracts

An Overview of

Christianity: An Overview Christianity: An Overview

An Overview of Guatemala’s - Simon Fraser University Overview of Guatemala's Medical... · AN OVERVIEW OF GUATEMALA ... (INGUAT) ... In this document we provide an overview of Guatemala’s

An overview of methanol as an internal combustion engine fuelnewfuel.dk/img/An overview of methanol as an internal combustion... · An overview of methanol as an internal combustion

An Overview of Control Strategies of Economically ...litchisa.co.za/An Overview of Control Strategies_S Schoeman.pdf · An Overview of Control Strategies of Economically Important

The Age of Ideologies Part I- An Overview Part I- An Overview

An Overview of the CapDEM Integrated Engineering Environment · An Overview of the CapDEM Integrated Engineering Environment ... support collaborative engineering ... An Overview

An overview of the Indian NBFC Sector - Vinod Kotharivinodkothari.com/wp-content/uploads/2017/06/An-overview-of-the... · An Overview of the Indian NBFC Sector ... An overview of

Overview Report II: An overview of current scientific

An Overview of Article 78 Practice and Procedureonlineresources.wnylc.net/FairHearingResources/docs/an_overview_of... · An Overview of Article 78 Practice and Procedure ... An Overview

Instituto Petroquímico Argentino -- An Overview of the An ... · -- An Overview of the An Overview of the Petrochemical Industry Petrochemical Industry -- ... V l tilit ill tiPrice

An Overview of Cognitive Linguistics Antonio Barcelona ... an overview of coglx- UCAM.pdf · An Overview of Cognitive Linguistics Antonio Barcelona Javier Valenzuela Universidad de

An Overview of Risk

AN OVERVIEW OF THE BIBLE Part 3 AN OVERVIEW OF THE BIBLE Part 3

An overview of ADFI

The Future of Energy Technologies: An Overview of … · An Overview of Expert Elicitations ... Victor Konde (United Nations ... The Future of Energy Technologies: An Overview of

290 PSYCHOLINGUISTICS: An Overview An Overview

Overview: An overview of the architecture, services, and

Expatriate Family Adjustment: An Overview of Empirical ... · 3 EXPATRIATE FAMILY ADJUSTMENT: AN OVERVIEW OF EVIDENCE 43 Expatriate Family Adjustment: An Overview of Empirical Evidence

Solar Ready: An Overview of Implementation Practicesresources.cleanenergyroadmap.com/NREL_Solar-Ready-An-Overview … · Solar Ready: An Overview of Implementation Practices Andrea

AN OVERVIEW OF UNDERGRADUATE TRANSLATOR-TRAINING CURRICULA ... · An Overview of Undergraduate Translator-Training Curricula in Turkey: ... An Overview of Undergraduate Translator-Training

Lesson Overview Lesson Overview Photosynthesis: An Overview Lesson Overview 8.2 Photosynthesis: An Overview PhotosynthesisOverviewPhotosynthesisOverview

An Overview of Zendesk

An Overview of Trilinos:An Overview of Trilinos

An Overview of CognitiveAn Overview of Cognitive Radio and

An overview of socilaism

An Overview of Total ArchitectureTotal Architecturetotal-architecture.com/indexFiles/Presentations/An Overview of...An Overview of Total ArchitectureTotal Architecture BPM and SOA

An Overview of Signal Source Technology and …materias.fi.uba.ar/6644/info/generadores/basico/overview of signal...An Overview of Signal Source Technology and ... An Overview of Signal

Overview.ppt Overview-An Overview of Visual Basic.NET An Overview of Visual Basic.NET

FAO - An Overview of Rainwater Harvesting … - An...An Overview of Rainwater Harvesting Initiatives in ... • reduced reliance on truck-borne ... An Overview of Rainwater Harvesting

An Overview of Tertiary Filtration Using Cloth Media ... 20100616... · An Overview of Tertiary Filtration Using Cloth Media Filtration Technology An Overview of Tertiary Filtration

An Overview Of Wpf

The Diversity of Life I. An Overview II. An Overview of 'The Bacteria

An Overview of Baptism