Shining a Light on Overprivileged Modern Applications – What Are They, How to Find Them, What to do About it

OVERVIEW

App developers have frequently requested more permissions than required. This is not a new problem. As applications modernize and move to the cloud this problem is still occurring, and it’s still your problem as a defender. Some malicious apps are also using similar TTPs to maintain persistence and read and extract data. In this session you will get a crash course on how modern apps request and use permissions, how to find these overprivileged apps, and what you as the defender can do about them.