Silent Saboteurs: Preventing Supply Chain Attacks in Mobile App Security



Mobile app development is full of dependencies and risks that you often don't control or even see. Third-party libraries, SDKs, and automated build systems speed up delivery—but they also open the door to hidden vulnerabilities. One compromised component in your supply chain can quietly expose sensitive data, leak IP, or damage your business before anyone notices.

 

Join Quokka for a practical discussion on how supply chain attacks target mobile apps—from malicious SDKs to compromised CI/CD pipelines. We’ll break down vulnerabilities in the mobile app supply chain and show steps you can actually take to reduce risk—without slowing down your dev team.

 

Key Takeaways:

  • Real-world examples of mobile app supply chain breaches
  • How attackers exploit third-party code and CI/CD environments
  • Practical risk reduction strategies: SBOMs, code signing, runtime checks
  • How to shift security left, without dragging down development

If your apps rely on third-party code—and they do—this session is worth your time. Register today! 

Speaker and Presenter Information

Ilya Dreytser has been testing mobile apps for security, performance, and functionality for the past 7 years. Previously Ilya presented at DroidCon, Div0 in Singapore, and various OWASP and ISSA events. Known for his engaging speaking style, Ilya�s journey began as a developer before transitioning into customer-facing work in security testing. He has a unique ability to break down complex mobile vulnerabilities into easy-to-understand concepts while providing real-world solutions. When he's not diving into mobile security, you might catch him enjoying the sunshine after years of basement coding!

 

Ilya is currently the VP of Solutions Engineering and Customer Success at Quokka. He is a senior leader of the customer engineering organizations with over 20+ years of experience in software development, pre-sales engineering, enterprise sales, and post-sales consulting and training.

Relevant Government Agencies

Intelligence Agencies, DOD & Military, Office of the President (includes OMB), Dept of Agriculture, Dept of Commerce, Dept of Education, Dept of Energy, Dept of Health & Human Services, Dept of Homeland Security, Dept of Housing & Urban Development, Dept of the Interior, Dept of Justice, Dept of Labor, Dept of State, Dept of Transportation, Dept of Treasury, Dept of Veterans Affairs, EPA, GSA, USPS, SSA, NASA, Other Federal Agencies, Legislative Agencies (GAO, GPO, LOC, etc.), Judicial Branch Agencies, CIA, FEMA, Office of Personnel Management, Coast Guard, National Institutes of Health, FAA, Census Bureau, National Guard Association, FDA, NSA, FCC


    Register as Attendee


    Add to Calendar


    Event Type
    Webcast


    This event has no exhibitor/sponsor opportunities


    When
    Tue, Sep 23, 2025, 12:00pm - 12:30pm ET


    Cost
    Complimentary:    $ 0.00


    Website
    Click here to visit event website


    Organizer
    Quokka.io


    Contact Event Organizer



    Return to search results