GOTO:HACK IOS APPLICATIONS - DOES YOUR COMPANY DATA ARE SAFE WHEN STORED ON IDEVICES ? presented at Hack.Lu 2012

by Mathieu Renard,

Tags: Security

Summary : Gone are the days when employees only used a company issued phone for work related matters. Today, employees bring personal smart phones and tablets to the office and have access to sensitive company information on these devices.
During this talk the author demonstrates how enterprise class applications like Mobile Device Management (MDM) Client, Confidential contents manager (Sandbox), professional media players and other applications handling sensitive data are attacked and sometimes easily breached.
This talk is designed to demonstrate many of the techniques attackers use to manipulate iOS applications in order to extract confidential data from the device. The audience will see examples of the worst practices we are dealing with every day when pentesting iOS applications and learn how to mitigate the risks and avoid common mistakes that leave applications exposed.