About

I am a malware researcher working for ESET since 2011. I initially started out as a Windows Malware Analyst but after 2 years I decided to continue as an Android Malware Analyst because it was a lot more intriguing and promising because back then we could witness the shift from computers to mobile devices — and Android was one of the front runners. What sets Android apart from iOS is that is an open platform, which encouraged me to focus on Android OS in my spare time and dump my own iPhone 3G -something I never regret- for the sake of the convenience it offered.

Open platforms, however, have certain shortcomings. They heavily depend on the goodwill of contributors to the ecosystem and contributors do not always work for the benefit of end-users. The fact that Android is a mobile OS gave rise to the exploitation of different functionalities through malware, such as sending text messages & making calls & taking pictures & recording calls on users’ behalf. As a result of this rising exploitation, we started categorising Android malware into different malware families and that is when I started out with my first analysis of Android malware and stopped working on Windows malware. In Android malware ecosystem, there are a lot of unusual ways to penetrate your device’s security through trojan families “pretending to” provide basic functionalities such as placing calls or sending text messages yet collecting private data in the background or impersonating your banking app or cryptocurrency wallets. What is more important, there were no researches or blogs disclosing any of these malicious practices and informing end-users — that’s exactly when I decided to start my own dedicated blog. The reason why I did not initially start with our company blog was merely because I lacked the experience in blogging and had yet to prove myself to my superiors. Three posts into my blogging initiative, I got the green light from my team leader and was granted a personal blog on our company blogging platform.

Since then I have published over 58 posts about Android malware, disclosed insecure and malicious apps on Google Play Store and many more on my Twitter profile.