Tech

  • Mobile banking malware & overlay attacks: what they are, why they work, and how to stop them

    Mobile banking malware & overlay attacks: what they are, why they work, and how to stop them

    Short version: modern Android banking trojans steal credentials and authorize fraud by placing fake UI layers over real banking apps (or by abusing Accessibility), capturing input and bypassing controls. This attack vector is old, effective, and still widely abused — stop treating it like “user error.” Fix the product and the server, harden the…

  • Bluetooth Low Energy (BLE) Attacks and Mobile App Protection

    Bluetooth Low Energy (BLE) Attacks and Mobile App Protection

    1. Understanding BLE and Its Security Exposure Bluetooth Low Energy (BLE) has become the foundation for modern wireless communication between IoT devices, wearables, and mobile applications. Its low power consumption and fast connection establishment make it ideal for health sensors, smart locks, and tracking devices.However, this convenience introduces a hidden risk: BLE communications often…

  • Hardware-Level Cryptography with Intel SGX: Securing the Untrusted World

    Hardware-Level Cryptography with Intel SGX: Securing the Untrusted World

    Introduction In a world where malware, rootkits, and insider threats constantly evolve, traditional software-based security is no longer enough. Intel Software Guard Extensions (SGX) takes a different path — embedding cryptographic isolation directly into the processor. By creating a trusted execution environment (TEE) within the CPU, SGX allows sensitive code and data to run…

  • Building Real-Time Systems with RTOS: Achieving Deterministic Low-Latency Performance

    Building Real-Time Systems with RTOS: Achieving Deterministic Low-Latency Performance

    🔹 Understanding Real-Time Systems Real-time systems are not just about running fast — they are about running predictably. In a typical computer, slight timing variations are acceptable. But in real-time applications — like industrial automation, medical equipment, or autonomous vehicles — a delay of even a few microseconds can lead to catastrophic consequences.A real-time…

  • Dynamic Memory Analysis with AddressSanitizer at the Binary Level

    Dynamic Memory Analysis with AddressSanitizer at the Binary Level

    Memory bugs are silent killers in software systems. They don’t just crash applications — they open doors for data corruption, undefined behavior, and exploitable security holes. Static analysis can help, but it’s often blind to runtime behavior. That’s where AddressSanitizer (ASan) comes in — a brutal, low-level memory checker that catches your mistakes as…