SyScan - Singapore

Thursday, April 3, 2014 5 years ago ,

MWR are happy to announce two successful submissions to this year's SyScan Singapore.

SyScan promises to be an event focused on technical security knowledge, with an impressive array of technical speakers, we are proud to have two of our talks in the top 17. We are also proud to announce that we have now confirmed Platinum sponsorship of SyScan Singapore.

For more details on this two day conference please go to

Mission mPOSsible – Jon Butler and Nils

Mobile Point-of-Sale (mPOS) devices represent the next step in bringing the processing of card payments to individuals and small businesses. Typically, these devices are used alongside tablets and smart phones to process card transactions. However, with the questionable state of mobile device security, how do mPOS devices fare in keeping sensitive customer data safe?

Nils and Jon will be sharing their research into the security of the leading solutions for mobile Chip & Pin payments, looking at the weaknesses in the current solutions. Live demos will see them drop root shells and gain code execution through each input vector. This is one not to be missed!

Navigating a sea of Pwn? – Windows Phone 8 AppSec – Alex Plaskett and Nick Walker

Windows Phone 8 is slowly increasing its market share, more applications are being developed for the platform, often without any real security guidance on how to develop secure applications and what to watch out for.

Alex Plaskett and Nick Walker will be highlighting the common mistakes made by developers which can introduce security weaknesses into Windows Phone 8 applications. They will demonstrate a novel class of vulnerabilities specific to Windows Phone 8 applications, provide guidance on how to determine if your application is vulnerable, and provide recommendations on how to resolve these issues.

Keep up to date and follow us @mwrinfosecurity



Accreditations & Certificates

MWR is an accredited member of The Cyber Security Incident Response Scheme (CSIR) approved by CREST (Council of Registered Ethical Security Testers).
MWR is certified under the Cyber Incident Response (CIR) scheme to deal with sophisticated targeted attacks against networks of national significance.
We are certified to comply with ISO 9001 and 14001 in the UK, internationally accepted standards that outline how to put an effective quality and environmental management systems in place.
MWR is certified to comply with ISO 27001 to help ensure our client information is managed securely.
As an Approved Scanning Vendor MWR is approved by PCI SSC to conduct external vulnerability scanning services to PCI DSS Requirement 11.2.2.
We are members of the Council of Registered Ethical Security Testers (CREST), an organisation serving the needs of the information security sector.
MWR is a supplier to the Crown Commercial Service (CCS), which provides commercial and procurement services to the UK public sector.
MWR is a Qualified Security Assessor, meaning we have been qualified by PCI to validate other organisation's adherence to PCI DSS.
As members of CHECK we are measured against high standards set by NCSC for the services we provide to Her Majesty's Government.
MWR’s consultants hold Certified Simulated Attack Manager (CCSAM) and Certified Simulated Attack Specialist (CCSAS) qualifications and are authorized by CREST to perform STAR penetration testing services.