Learn more about Alissa Knight, a recovering hacker of twenty years and managing partner of Knight Ink.
Arxan Technologies is an in-app protection solution that provides obfuscation of application code, white box encryption, and tamper detection to prevent reverse engineering of sensitive eCommerce and mobile applications. Arxan needed a white paper that would demonstrate the why their solution was needed to educate the market on the need for in-app protection solutions and what happens when it’s not applied.
The goal of the project was to demonstrate the efficacy of the Arxan for mobile and Arxan for web in-app protection solutions through the reverse engineering of applications to evidence what’s visible to adversaries targeting a company’s mobile application and eCommerce site.
Thirty financial services mobile applications were downloaded and reverse engineered in approximately 8.5 minutes per app. Hard coded API keys, API tokens, and credentials were found inside 29 of the 30 mobile applications.
The white paper that presented these findings went viral and led to accepted paper submissions to some of the largest cybersecurity conferences across the U.S., Europe, and Asia where the findings were presented in keynote presentations at these conferences.
Read the December issue of FinTech magazine where Alissa Knight’s presentation at Money 20/20 on hacking 30 financial services mobile apps was featured.