I just got confirmation that my talk on BlackBerry related spyware and lawful interception is accepted for this years Hack In The Box conference in Malaysia! W00t!  I’m quite excited because for one, its the first time I’ll speak at Hack In The Box, and second, HITB has featured some of the best and brightest security professionals from around the world.

I will be speaking on the security of the BlackBerry handhelds and how it’s strong security leaves only one weak link to target: the user.  I will also demo the legal interception PoC (maybe release a toolkit? still debating) and give a live demo on how your handheld can get pwned and what sneaky social engineering tricks can be employed to do so.  I’ll also talk about what risks you face if you get pwned by similar spyware and how you can detect and prevent such attacks in the future.

If you haven’t already done so, you should check out HITB.  If you haven’t already been to one of the cons, you should go.  Its a fantastic place to learn about the latest research, vulnerabilities, developments and other assorted hackery in the security industry.  Unafraid of pulling any punches, L33tdawg does not shy away from hosting in-depth technical talks at his con.  A 2 day Technical Training track precedes the con and is another great way of picking up some m4d l33t sk1llz.  I wrote a post on Burp Suite that talked a little bit about the Web Application Hackers Handbook and one of its authors; well the other author, Marcus Pinto, will be one of the trainers this year talking about Web Application (in)Security.

And after all is said and done, there’s usually one kick-ass party to wrap things up.  So get your asses on down to HITB this year and come say hi, it’ll be a blast!