http://securitygalore.com/site3/taxonomy/term/24 en http://securitygalore.com/site3/blackhat_defcon_2017 <div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even" property="content:encoded"><p>Last month, <a href="http://www.ikotler.org/" target="_blank">Itzik Kotler</a> and I presented our research at <a href="https://www.blackhat.com/us-17/briefings/schedule/index.html#the-adventures-of-av-and-the-leaky-sandbox-7008" target="_blank">BlackHat US 2017</a> and <a href="https://www.defcon.org/html/defcon-25/dc-25-speakers.html#Kotler" target="_blank">DefCon 25</a>. The research was covered by <a href="https://www.forbes.com/sites/thomasbrewster/2017/07/27/kaspersky-av-hack-with-satellite-malware/" target="_top">Forbes</a>, <a href="http://www.eweek.com/security/antivirus-software-cloud-use-exposes-customers-to-data-exfiltration" target="_top">eWeek</a> and several non-English media sites, e.g. <a href="https://www.calcalist.co.il/markets/articles/0,7340,L-3718209,00.html" target="_top">Calcalist </a>(Hebrew). The <a href="https://go.safebreach.com/rs/535-IXZ-934/images/Adventures_AV_Leaky_Sandbox.pdf" target="_blank">whitepaper</a>, <a href="https://go.safebreach.com/rs/535-IXZ-934/images/BlackHat_AV_Leaky_SandBox.pdf" target="_blank">slides</a> and <a href="https://github.com/SafeBreach-Labs/spacebin" target="_blank">source code</a> are available.</p> </div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-above clearfix"><h3 class="field-label">Tags: </h3><ul class="links"><li class="taxonomy-term-reference-0" rel="dc:subject"><a href="/site3/taxonomy/term/24" typeof="skos:Concept" property="rdfs:label skos:prefLabel" datatype="">blackhat</a></li><li class="taxonomy-term-reference-1" rel="dc:subject"><a href="/site3/taxonomy/term/31" typeof="skos:Concept" property="rdfs:label skos:prefLabel" datatype="">DefCon</a></li></ul></div> Sun, 06 Aug 2017 16:03:32 +0000 amit 25 at http://securitygalore.com/site3 http://securitygalore.com/site3/blackhat_defcon_2017#comments http://securitygalore.com/site3/bh_usa_2016 <div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even" property="content:encoded"><p>On August 3rd, 2016, <a href="http://ikotler.org/" target="_blank">Itzik Kotler</a> and I presented our talk "<a href="https://www.blackhat.com/us-16/briefings/schedule/index.html#crippling-https-with-unholy-pac-3778" target="_blank">Crippling HTTPS with unholy PAC</a>" at BlackHat USA 2016.</p> <p><a href="https://www.blackhat.com/docs/us-16/materials/us-16-Kotler-Crippling-HTTPS-With-Unholy-PAC.pdf" target="_blank">Slides</a></p> <p><a href="https://github.com/SafeBreach-Labs/pacdoor" target="_blank">Source code</a></p> <p><span style="font-size: 13.008px; line-height: 1.538em;">The research is mentioned in </span><a href="http://www.csoonline.com/article/3106076/data-protection/disable-wpad-now-or-have-your-accounts-and-private-data-compromised.html" style="font-size: 13.008px; line-height: 1.538em;" target="_top">CSO online</a><span style="font-size: 13.008px; line-height: 1.538em;"> and </span><a href="https://it.slashdot.org/story/16/08/13/0149241/disable-wpad-now-or-have-your-accounts-compromised-researchers-warn" style="font-size: 13.008px; line-height: 1.538em;" target="_blank">Slashdot</a><span style="font-size: 13.008px; line-height: 1.538em;">.</span></p> <p> </p> <p> </p> </div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-above clearfix"><h3 class="field-label">Tags: </h3><ul class="links"><li class="taxonomy-term-reference-0" rel="dc:subject"><a href="/site3/taxonomy/term/24" typeof="skos:Concept" property="rdfs:label skos:prefLabel" datatype="">blackhat</a></li><li class="taxonomy-term-reference-1" rel="dc:subject"><a href="/site3/taxonomy/term/25" typeof="skos:Concept" property="rdfs:label skos:prefLabel" datatype="">video</a></li><li class="taxonomy-term-reference-2" rel="dc:subject"><a href="/site3/taxonomy/term/26" typeof="skos:Concept" property="rdfs:label skos:prefLabel" datatype="">slides</a></li></ul></div> Sun, 28 Aug 2016 20:05:25 +0000 amit 22 at http://securitygalore.com/site3 http://securitygalore.com/site3/bh_usa_2016#comments