// archives

BlackBerry

RSS feed for this section
This category contains 32 posts

PhoneSnoop – Turn a BlackBerry into a portable bug

By October 19, 2009 36 comments

I’m back at work after attending Hack in the Box security conference.  It was an excellent conference and I managed to catch up with a few friends and industry professionals.  The Malaysian conference is still by far bigger than the one held in Dubai.  This year saw roughly 600 people.  I also heard that the [...]

BlackBerry QRCodes – A look inside

By October 17, 2009 2 comments

So I was curious about what the new BlackBerry Messenger 5.0 QRCodes actually contained.  More than that, I was curious to find out if someone can inject weird characters and make the handhled do weird things.  So the first thing I did was get a hold of my own QRCode.  Then I grabbed a copy [...]

@ HITB in KL

By October 7, 2009 Post a comment

I’m at HackInTheBox in KL at the moment.  Delivered my presentation early on today.  The tools I spoke about, Bugs and Kisses, are available in the Resources section.  I’ll do a more detailed write up sometime in the future.

Create MPIs in Java

By August 7, 2009 2 comments

I use GPG frequently and have a few of my friends I correspond with on a regular basis.  We’re all paranoid and hence tend to use GPG.  What I sorely lack is a GPG client on my BlackBerry.  Sure, there’s Atmoichelix, but CAD $49.50 for a 1 year license, I mean, really?  GPG should be [...]

I’m speaking at Hack In The Box 2009!

By August 4, 2009 2 comments

I just got confirmation that my talk on BlackBerry related spyware and lawful interception is accepted for this years Hack In The Box conference in Malaysia! W00t!  I’m quite excited because for one, its the first time I’ll speak at Hack In The Box, and second, HITB has featured some of the best and brightest [...]

BlackBerry Lawful Interception

By August 1, 2009 Post a comment

Well, its inevitable, I guess, considering the recent issues with Etisalat’s spyware fiasco.  I’ve been working on a Legal Interception PoC for BlackBerry handhelds.  I figure, I’ll show them how to do it right rather than sitting on the sidelines and taking apart a feeble attempt at spying on BlackBerry users.  So at the moment [...]

Nevermind the software, get educated

By July 23, 2009 One comment

I’m going to tell you about a method that always works and gives you phenomenal results when you conduct pen-testing assignments.  Really.  It always works.  Its nothing new; its actually so old that the ye olde hackres have used it so successfully in the past to gain access to just about anything and anywhere.  Well?  [...]

Spyware removal howto guide

By July 20, 2009 3 comments

It occurred to me that I didn’t do a proper guide for the removal of the Etisalat spyware with my tool HiddenProgs.  I did a quick how-to. Get the Spyware Removal Guide.

Leaked spyware, threat to security

By July 19, 2009 2 comments

The fiasco with the Etisalat spyware is possibly still not over.  Effectively both Etisalat and SS8 may jeopardize the safety of not only its own subscribers but many other BlackBerry users globally.  The whitepaper analyzing the spyware that I released had me thinking further in the future.  If I have a copy of the spyware, [...]

BlackBerry Hidden Program Revealer v0.1

By July 17, 2009 29 comments

Okay, for real this time.  Continuing from my previous post, I’ve got version 0.1 of the HiddenProgs app available for download.  Grab your copy here.  The way I installed it was to just navigate to the link using my Bold.  By downloading the program, you’re acknowledging you’ve read and understood the disclaimer below. Description The [...]

«PreviousNext »