Blog is available at:
Donkey On A Waffle Blog
Papers and Presentations:
All papers and presentations by Tyler Shields unless specifically noted. Some slide decks are duplicated across presentations but mirrored independently for posterity.
Upcoming
Triangle InfoSeCon (October 2010) - Mobile Malware
OWASP Ireland Appsec 2010 Conference (September 17, 2010) - Application Security Scoreboard in the Sky
Software Development Forum Security Special Interest Group (October 2010) - Mobile Malware
2010 SF ISACA Fall Conference (October 2010) - Mobile Malware
BruCON Security Conference - Mobile Spyware (Sept 2010)
2010
iSec Forum NYC - Mobile Spyware (June 2010)
The Coming Wave of Smartphone Attacks - The Monkey Steals the Berries - IT Hot Topics Conference 2010
Mobile Spyware - Texas DIR Conference April 2010
Blackberry Mobile Spyware - The Monkey Steals the Berries Part Deux - Source Boston 2010
Blackberry Mobile Spyware - The Monkey Steals the Berries: Raleigh ISSA April 2010
Static Detection of Application Backdoors: Datenschutz und Datensicherheit - DuD Vol 34, Number 3: Paper by Chris Wysopal/Tyler Shields/Chris Eng
Blackberry Mobile Spyware - The Monkey Steals the Berries: Shmoocon 2010
Shmoocon 2010 Presentation Video
V1.0 txsBBSpy source code: Released at Shmoocon 2010
2009
Detecting "Certified Pre-0wned" Software: Triangle Infosec Conference 2009
Detecting "Certified Pre-owned" Software : Paper by Chris Wysopal/Tyler Shields
Anti-Debugging - A Developers View : Source Boston Conference Presentation
Anti-Debugging - A Developers View : Paper
Anti-Debugging - A Developers View Sample Code
Anti-Debugging - A Developers View Video
2008
Survey of Rootkit Technologies and Their Impact on Digital Forensics : Paper
Rootkits - Then and Now : CarolinaCon Presentation
Rootkits - Then and Now : CarolinaCon Presentation Video
2006
Reverse Engineering 101 : CarolinaCon Presentation Video
2005
Web Attacks 101 : CarolinaCon Presentation
2004
Web Attacks and Defenses : Infragard Presentation
Web Attacks and Defenses : North Carolina State Invited Lecture
2002
Open Source Methodology Manual : Hope 2002 Conference
Symantec Acquires SecurityFocus - Good or Evil?
Media References:
iPhones, Blackberrys, Droids Becoming a Moveable Feast for Attackers - Threatpost
Blackberry makers feel the heat from governments - National Public Radio (NPR) Marketplace
How secure is it? The new world of cell phone dangers
Fake smartphone apps 'steal data' video - BBC News
Smartphone Security Put On Test - BBC News
BlackBerry's armor has cracks, security experts say - Reuters
RIM Helps Russia, China Monitor Blackberry Users' E-mails - Forbes.com
Hack into a smart phone? It's easy, security experts find - Los Angeles Times
Security policies needed for mobile access - ZDNetAsia
The Coming Wave of Mobile Attacks - ThreatPost
Goodbye Blackberry: Future Belongs to iPhone - Computer World (Slightly out of context quote)
New Hack Pinpoints Cell Phone User's Location, Personal And Business Relationships - Dark Reading
What Your iPhone Apps Know About You - Forbes.com
BlackBerry has spyware risk too, researcher says - CNET.com
Blackberry spyware source code released - Network World
BlackBerry Spyware Can Intercept Texts, Email, Track User's Location - ThreatPost
Hacker Unleashes BlackBerry Spyware Source Code - DarkReading
Threatpost Digital Underground Postcast
Risky.biz Podcast