Mobile Apps Reverse Engineering Tools

April 27, 2012 in Web design/development with 0 Comments

Just imagine what would happen if cell phones were affected by malware as much as PCs and organizational web sites. There are more than 34 million devices in use globally and according to some estimates, a massive amount of devices are coming to market with many different patch levels. When it comes to mobile applications, you don’t have a malware problem, you have an adversary problem, this according to Adam Meyers, Director of Intelligence at CrowdStrike, a mobile app reverse engineer.

Reverse engineering apps help penetration testers understand how the app works and discover weaknesses that can be used by cybercriminals in a real-world attack. Enterprises that are risk averse may set up their own mobile app store to give employees approved applications that have been vetted and white listed for use on their Smartphone or tablet devices. Meyers said that although mobile malware is just beginning to emerge, plenty of cybercriminals are working to find ways to get malware to live inside the platform’s kernel. “Detection and prevention is very difficult to do,” he said, because security software is restricted by manufacturers. Several applications provide a basis for future attack types. A flashlight app that surfaced in the Apple iTunes store contained a hidden feature giving users tethering capabilities. Apple makes it especially difficult for reverse engineers because it uses FairPlay, a digital rights management (DRM) technology created for songs as the same mechanism to protect app files, Meyers said. A mobile application called Dog Wars surfaced at the time football star Michael Vick faced legal troubles over his role in underground dogfights. The app contained malicious Java functionality that sent a text to everyone in the user’s contact list saying that the user hates animals. The app was designed by the animal care advocate organization, PETA. If an organization like PETA can accomplish this, just imagine what a skilled team can do.

For more info, read this article by Robert Westervelt and more at Search Security.

Share on FacebookShare on Twitter
Pin it on PinterestShare on LinkedInShare on TumblrSubmit to StumbleUponhttp://blog.nugenerationwebdesign.com/wp-content/uploads/2012/04/malware-phone-150x111.jpgDigg ThisShare via email

Related posts:

  1. Top Ten Mobile Apps of 2012
  2. Designer Tools -Where to Find the Best Apps
  3. 6 Mobile Trends for the Enterprise in 2012

About Duane A. Mac: Duane is a Pro Blogger, IT Consultant, and co-editor of It's a NuGeneration. He is also a retiree from the USAF, having served several meritorious years as an IT/Service Manager. Learn more and connect with him on Google+ and LinkedIn.

All Posts by  |  Facebook  |  Share By Email

Switch to our mobile site

Disclaimer