More Software Testing Unleashed episodes

From Nokia to iPhone: What Pen Testers Learned - Bartosz Czernic-Goawski thumbnail

From Nokia to iPhone: What Pen Testers Learned - Bartosz Czernic-Goawski

Published 16 Apr 2026

Duration: 00:33:11

The historical evolution of mobile security, from unencrypted analog systems to 5G cryptography, highlights enduring vulnerabilities like app flaws, IoT risks, user behavior threats, platform security trade-offs, and the ongoing tension between innovation, usability, and privacy.

Episode Description

In this episode, I talk with Bartosz Czernic-Goawski, a penetration testing and cybersecurity expert, about how mobile security has evolved from Nokia...

Overview

The podcast explores the evolution of mobile security from early devices like the Nokia 3310, which lacked advanced security features, to modern smartphones integrated with complex networks and ecosystems. It highlights how security concerns have expanded alongside technological advancements, from analog systems vulnerable to eavesdropping in the 1980s, where "phone freaks" manipulated telephone exchanges, to 5G networks now employing cryptography for secure communications. The discussion underscores the shift from simple communication tools to multifunctional devices that connect with broader systems, introducing new vulnerabilities as user behavior and technology become more intertwined.

Key topics include the vulnerabilities of early smartphones, such as apps accessing sensitive data and push notifications exposing metadata, as well as ongoing efforts to secure app development. The podcast contrasts Androids open ecosystem, which allows easier installation of malicious apps, with iOSs stricter app approval process, though iOS faces challenges like excessive permissions and abuse of accessibility features. Privacy risks are also emphasized, such as the use of sensors (GPS, microphones) by third parties for behavior monitoring, and the ethical dilemmas of balancing usability with data collection practices that often lack user awareness.

The text addresses modern risks like social engineering tactics, such as smishing and phishing, as well as malware attacks like overlay schemes that mimic legitimate login screens. It examines platform-specific security trade-offs, including iOSs susceptibility to advanced spyware and Androids risks from untrusted app sources. Concerns about data exploitation by companies, such as Meta repurposing user data for AI training, and the impact of regulatory efforts like the EUs Digital Market Actaimed at reducing app store monopoliesare also discussed. Finally, the podcast touches on legacy technology challenges, the risks of older devices relying on outdated networks, and the tension between securing modern systems and maintaining accessibility for users dependent on older infrastructure.

Recent Episodes of Software Testing Unleashed

9 Apr 2026 Empowering Women in Software Testing - Line Ebdrup Thomsen

Highlighting women's underrepresentation in tech's software development versus higher presence in testing due to diverse entry paths and alignment with creativity, while addressing gender bias, stereotypes, and microaggressions, and emphasizing inclusive practices, non-technical skills, and leveraging testing's collaborative nature for growth.

2 Apr 2026 The Hidden Playwright Advantage Developers Miss - Maciej Kusz

Python offers broader flexibility for non-web and infrastructure testing with Playwright but requires extra setup, while TypeScript provides native integration with advanced web-specific tools like visual regression testing and Electron/mobile support, making the choice depend on project needs and team expertise.

26 Mar 2026 Stop the blame, keep the learning - Natalia Romanska

Learning from failure drives professional growth through objective analysis, a "fail-fast, learn-quick" mindset, self-reflection, feedback, balancing technical and soft skills, avoiding comparisons, and embracing failure's inevitable lessons.

19 Mar 2026 How Motherhood Made Me a Better QA Manager - Zaklina Polak Matanovic

Motherhood skills like communication, adaptability, and empathy enhance software testing and teamwork by fostering collaboration, proactive problem-solving, and inclusive environments through parallels in task delegation, accountability, and handling unpredictability.

More Software Testing Unleashed episodes