SOURCE: Bluebox Security

Bluebox Security

July 31, 2014 08:00 ET

Bluebox Security CTO to Present on the Android Fake ID Vulnerability at Black Hat USA 2014

Jeff Forristal to Walk Through New Vulnerability Affecting All Android Devices Since January 2010

SAN FRANCISCO, CA--(Marketwired - Jul 31, 2014) - Bluebox Security®, the leading mobile data security company, today announced that Jeff Forristal, Bluebox Security CTO, will present the new Android vulnerability, Fake ID, at Black Hat USA 2014. The vulnerability, a flaw in the Android application certificate verification process, allows malicious applications to escape the normal application sandbox and gain special security privileges without any user notification. This vulnerability has widespread impact and can lead to a malicious application having the ability to steal user data, recover passwords and in certain cases, compromise the entire Android device. The vulnerability is embedded in all Android devices shipped since January 2010 (Android Eclair 2.1).

To read more about Fake ID, visit

"Android Fake ID Vulnerability Walkthrough"

Black Hat 2014
Mandalay Bay
Las Vegas, NV

Wednesday, August 6, 2014 at 12:20pm PT

In its 17th year, Black Hat USA brings together the brightest in the world for six days of learning, networking, and skill building. The Black Hat Briefings have become the most important security conference series in the world by sticking Black Hat's core value: serving the information security community by delivering timely, actionable security information in a friendly, vendor-neutral environment.

Additional Resources

About Bluebox Security
Founded in 2012 by a team of security experts, Bluebox Security offers the first mobile data security solution to safeguard corporate data across the device, application, and network. The cloud-based solution provides complete visibility and security of corporate data, while providing employees the freedom, ease of use, and privacy that ensures widespread adoption. Bluebox Security has received a total of $27.5 million in funding from Andreessen Horowitz, Tenaya Capital, Sun Microsystems co-founder, Andreas Bechtolsheim, SV Angel, and Google Board member Ram Shriram. The company is headquartered in San Francisco. For more information visit or follow us on Twitter @blueboxsec.

Contact Information

  • Media Contact
    Michelle Dailey
    Email Contact