Achieving a 0-click capability in Android is a non-trivial process of taking into account multiple factors such as exploitability, covertness, and deep understanding of our target's surface of communication.
In this presentation we will cover our mindset of how a 0-click capability is developed, and present a real-life scenario of combining Samsung Account features and an image processing exploit to achieve a fully remote and covert 0-click capability.
We will present some of the basics of Android Image Processing, cover some of the interesting features of a Samsung Account, and eventually chain everything together.
Yuval Kaufman is a lead researcher and cofounder of Radiant Research Labs which is a vulnerability research group based in Israel.
Kaufi specializes in Android vulnerability research and exploitation.
