A mobile app that’s vulnerable to man-in-the-middle (MITM) attacks can allow an attacker to capture, view, and modify sensitive traffic sent and received between the app and backend servers. At NowSecure, Michael Krueger and Tony Ramirez spend their days performing penetration tests on Android and iOS apps, which include exploiting MITM vulnerabilities and helping developers fix them. Join Michael and Tony for a 30-minute talk about MITM attacks on mobile apps and how to prevent them that will cover:
— Identifying man-in-the-middle vulnerabilities in mobile apps
— How to execute a mobile man-in-the-middle attack
— Right and wrong ways to implement certificate validation and certificate pinning