Sehr geehrte Studierende,

am 22.01.2014 findet um 16:00 Uhr das zweite Kolloquium im Rahmen der Vortragsreihe des Themas "IT-Security, Hacking und Security Awareness" statt. Der Vortrag wird durch die Heidelberger IT-Security Firma "ERNW GmbH" durchgeführt und behandelt die Ausnutzung eines Sicherheitsproblems bei USB-Verbindungen zwischen einem Android-Smartphone und einem PC. Der Vortrag wird in englischer Sprache gehalten.

Abstract

Smartphones and tablets are widely deployed in modern society. Android with its market share of over 50% in the mobile sector plays an important role in the ecosystem of mobile devices. The USB interface is the most common way to share data between a PC to an Android device using a physical connection. As the USB connection generally can be used for various devices like flash storages or keyboards to communicate with a PC there is a large attack surface. The presented research analyses the possible attack vectors for using android devices as malware host in order to infect desktop PCs when people are sharing information between those devices.

About the speaker

Sergej Schmidt works at the Mobile Security Team, where he spends most of his time testing mobile apps and their backends trying to circumvent their security mechanisms. Besides pentesting he also does research in the area of iOS and Android platforms.