VB2013 speaker spotlight

Posted by   Virus Bulletin on   Aug 16, 2013

We speak to Roman Unuchek about malicious redirection of mobile users, his research interests, and what he aims to bring to VB2013.

The VB2013 conference takes place this autumn (2-4 October) in Berlin, with an exciting programme that covers many of today's most pertinent security-related topics.

In the build-up to the event we are running a series of blogs in which we introduce the speakers and find out a bit more about their research interests and what they aim to bring to the conference.

Today, we speak to Roman Unuchek who will speak at VB2013 on the subject of malicious redirection of mobile users.

Tell us a little bit about yourself - your job and your responsibilities.

Roman Unuchek "I work for Kaspersky Lab as a senior malware analyst in the Non-Intel Research Group. I work with all types of non-Windows and non-Intel malware: OSX, Linux and mobile malware. My main responsibilities are to find new Android malware, to analyse and to detect it. For these purposes I develop honeypots, crawlers, different similarity methods and auto detection systems."

Can you give us a brief outline of what you will be speaking about at VB2013?

Roman Unuchek "I'll be speaking about infected sites. But not common infections - this kind of infection leads only to redirections of mobile users. I'll show different landing pages that use social engineering and Android malware samples."

Why is your presentation particularly relevant to the security community?

Roman Unuchek "My presentation contains lots of things - website infections, Android malware, social engineering, stolen money. All of these are of interest to the security community."

What can delegates learn from your presentation?

Roman Unuchek "I'll describe how users can be infected by Android trojan SMS from infected sites. Also I'll try to estimate the amount of money that was stolen by these malware samples."

What other presentations are you looking forward to?

Roman Unuchek "The papers I'm most looking forward to are Samir Mody's paper on Android malware obfuscation and Rowland Yu's case study of Android malware."

Roman Unuchek will present 'Malicious redirection of mobile users' at 11:50 on Thursday 3 October.

The full programme for VB2013, including abstracts for each paper, can be viewed here.

Read more about why you should attend VB2013 - and download our letter templates as a guide for justifying to your budget holder why you should attend VB2013.

VB2013 takes place 2-4 October 2013 in Berlin, Germany - online registration is now open - we'd love to see you there!

Posted on 16 August 2013 by Helen Martin



Latest posts:

VB2019 paper: Domestic Kitten: an Iranian surveillance program

At VB2019 in London, Check Point researchers Aseel Kayal and Lotem Finkelstein presented a paper detailing an Iranian operation they named 'Domestic Kitten' that used Android apps for targeted surveillance. Today we publish their paper and the video…

VB2019 video: Discretion in APT: recent APT attack on crypto exchange employees

At VB2019 in London, LINE's HeungSoo Kang explained how cryptocurrency exchanges had been attacked using Firefox zero-days. Today, we publish the video of his presentation.

VB2019 paper: DNS on fire

In a paper presented at VB2019, Cisco Talos researchers Warren Mercer and Paul Rascagneres looked at two recent attacks against DNS infrastructure: DNSpionage and Sea Turtle. Today we publish their paper and the recording of their presentation.

German Dridex spam campaign is unfashionably large

VB has analysed a malicious spam campaign targeting German-speaking users with obfuscated Excel malware that would likely download Dridex but that mostly stood out through its size.

Paper: Dexofuzzy: Android malware similarity clustering method using opcode sequence

We publish a paper by researchers from ESTsecurity in South Korea, who describe a fuzzy hashing algorithm for clustering Android malware datasets.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.