The talk will cover:

Definition of security in mobile apps
Aligning real-world mobile security with the OWASP Mobile Top 10
Top X things developers do, which they should not
How not to build an insecure mobile app (and API)
Real-world impact of bugs
Q&A

Speaker bio

Riddhi Shree works as Application Security Analyst at Appsecco. She has around 10 years of Software Industry experience. As a voluntary work, she leads the null Bangalore Chapter, which is India’s largest open security community for security enthusiasts.
Riddhi has worked as Quality Analyst and a Scrum Master in different organizations. Riddhi is the developer and maintainer of VyAPI, a cloud based vulnerable hybrid Android App.
At Appsecco she specialises in the area of web and mobile application penetration testing and vulnerability research in web applications, mobile applications, AWS and often participates in online challenges.

Riyaz Walikar currently works as the Head of Security Research and Testing at Appsecco. His team primarily works on identifying vulnerabilities in web and mobile apps, cloud solutions, container technologies, maritime systems and anything else that can be used and abused via user interaction.
Riyaz is an OSCP and CREST certified web application and network pentester, security evangelist and researcher. He has been active in the security community for the better part of the last 13 years. He has been actively involved with the Bangalore OWASP and null chapter for
the last 7 years and is one of the OWASP Bangalore chapter leads.
Riyaz is also a frequent speaker at security events and conferences around the world including BlackHat, nullcon, c0c0n, xorconf and OWASP AppsecUSA. When he is not writing/breaking code, you can find him sleeping, playing football, reading or fishing.

Plug the vulnerabilities