An iPhone user’s worst nightmare is to have someone gain persistent control over his/her device, including the ability to record and control each and every activity without even needing to be in the same room. In this talk, Yair and Roy will present a new vulnerability called ‘iOS Trustjacking’, which allows an attacker to do exactly that by exploiting a set of iOS features that have a dark side.
Learning Objectives: 1: Learn about the implications of an iOS Trustjacking attack. 2: Learn how to minimise the exposure to iOS Trustjacking and similar attacks. 3: Learn how new features create opportunities for hard-to-mitigate vulnerabilities.