Devil in the Details: A Reverse Engineering Campaign Across 30 Financial Services Mobile Apps

  • Date 04 Jun 2019

Devil in the Details: A Reverse Engineering Campaign Across 30 Financial Services Mobile Apps

04 Jun 2019, 12:40 - 13:05

Tech Talks

Following a six-week research study I performed into reverse engineering financial services mobile apps, I am on a world tour unveiling my vulnerability findings in retail banking, cryptocurrency wallets, stock trading, auto insurance, health insurance, payment processors, P2P money transfer, and HSA banking apps that included both US and European FinServe and FinTech companies. The vulnerabilities I'll be unveiling underscores a systemic problem that ultimately lead to API, cloud service provider, SaaS, and payment processor security breaches used by these mobile apps as a result of insecure coding practices. Join me as I unveil my vulnerability findings in part 1 of this 3 part series of vulnerability research.

Learning Outcomes:

  • Development teams, cybersecurity engineers, chief information security officers, and other senior business leaders will leave better-informed on the threats to their APIs and third-party suppliers as a result of poor secure coding practices in their mobile apps and how they can address them.


  • Alissa Knight


    Senior Analyst

    Aite Group

    Alissa Knight is a 20-year veteran in cybersecurity as a penetration tester and vulnerability researcher. More recently, she spent several years in...

Business Issues covered

  1. What will this session help you to do?
    • Deliver security to drive and enable business growth‎
    • Understand internal and external threats and keep a business secure‎


We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.