What are the common mistakes mobile app developers make when creating mobile apps? How do these mistakes make your app vulnerable to attack and abuse? This talk will show how an attacker perceives mobile app security, and how the mobile app environment cannot exist in isolation without considering the security of the API/APP backend as well. Speakers Riyaz Walikar and Riddhi Shree covered:
- Definition of security in mobile apps
- Top X things developers do, which they should not
- What can developers do to improve mobile app (and API) security
- Bonus Content - What does a mobile app hacker lab look like
Slides for talk are published on: https://www.slideshare.net/appsecco/fragmentsplug-the-vulnerabilities-in-your-app
This talk is followed by an office hours session - a week later - on mobile apps security. Details here: https://hasgeek.com/fragments/mobile-apps-security-consultation-with-appsecco/
About the curator - Appsecco: Appsecco is a specialist application security company, founded in 2015, providing industry leading security advice that is firmly grounded in commercial reality. Appsecco’s services cover the entire software development life-cycle, from advising on how to build and foster a culture of security within development teams and organisations to reviewing and advising on the security of applications and associated infrastructure under development to providing rapid response and advice in the event of a security breach or incident.
Clients range from major global financial institutions and professional services firms to leading international retailers and retail brands and from large scale, heavy engineering companies to cutting edge technology companies across the globe.
In addition to client-facing work, Appsecco’s technical team is actively involved in researching and developing new and better ways to stay secure. The technical staff can regularly be found presenting their findings at industry conferences and events ranging from nullcon in India, DevSecCon in London, Boston and Singapore, to Black Hat and DEF CON, the world’s largest security trade show and conferences, respectively, held annually in the USA.
Links: https://appsecco.com | https://blog.appsecco.com
Contact information: For inquiries about the event, call 7676332020 or email firstname.lastname@example.org
Riddhi Shree, Riyaz Walikar
Short presentation: On mobile apps securityThe talk will cover: Definition of security in mobile apps Aligning real-world mobile security with the OWASP Mobile Top 10 Top X things developers do, which they should not How not to build an insecure mobile app (and API) Real-world impact of bugs Q&A