Lessons Learned Hunting IoT Malware Olivier Bilodeau

Channel:
United States All Hacking Cons
Subscribers:
6,000
Published on ● Video Link: https://www.youtube.com/watch?v=TU3AeDqD9vs


Duration: 49:09
15 views
1

Permeating the entire spectrum of computing devices, malware can be found anywhere code is executed. Embedded devices, of which many are a part of the Internet of Things (IoT), are no exception. With their proliferation, a new strain of malware and tactics have emerged. This presentation will discuss our lessons learned from reverse-engineering and hunting these threats. During our session, we will explain the difficulty in collecting malware samples and why operating honeypots is an absolute requirement. We will study some honeypot designs and will propose an IoT honeypot architecture comprising several components like full packet capture, a man-in-the-middle framework and an emulator. Additionally, reverse-engineering problems and practical solutions specific to embedded systems will be demonstrated. Finally, we will explore three real-world cases of embedded malware. First, Linux/Moose, a stealthy botnet who monetizes its activities by selling fraudulent followers on Instagram, Twitter, YouTube and other social networks. Second, a singular ELF binary of the MIPS architecture which serves as a dropper. Third, LizardSquad's LizardStresser DDoS malware known as Linux/Gafgyt. Attendees will leave this session better equipped to hunt this next generation of malware using primarily open source tools.


Presenters:
Olivier Bilodeau

44 con 2017 Hacking conference
#hacking, #hackers, #infosec, #opsec, #IT, #security



Other Videos By All Hacking Cons


2021-10-06So You Want to Hack Radios Marc Newlin and Matt Knight
2021-10-06See no evil, hear no evil Matt Wixey
2021-10-06Secrets Of The Motherboard Shit My Chipset Says Graham Sutherland
2021-10-06Reverse Engineering Windows Malware 101 Workshop Amanda Rousseau Workshop
2021-10-06Red Team Revenge Attacking Microsoft ATA Nikhil Mittal
2021-10-06Persisting with Microsoft Office Abusing Extensibility Options William Knowles
2021-10-06The Internet of Us Don A Bailey
2021-10-06The Black Art of Wireless Post Exploitation Gabriel Ryan
2021-10-06Subgraph OS Hardening a Linux Desktop David Mirza Ahmad
2021-10-06Inside Android's SafetyNet Attestation Colin Mulliner
2021-10-06Lessons Learned Hunting IoT Malware Olivier Bilodeau
2021-10-06A Hands On Introduction To Software Defined Radio Didier Stevens Workshop
2021-10-06ARM Assembly and Shellcode Basics Saumil Shah Workshop
2021-10-06BaRMIe Poking Java's Back Door Nicky Bloor
2021-10-06Biting the Apple that feeds you Alex Plaskett and James Loureiro
2021-10-06Breaking Historical Ciphers with Modern Algorithms Klaus Schmeh
2021-10-06Checking BIOS protections offline with just the firmware updates Yuriy Bulygin
2021-10-06Chkrootkit Eating APTs for breakfast since 1997 Nelson Murilo
2021-10-06Cisco ASA Episode 2 Striking back Internals and Mitigations Cedric Halbronn
2021-10-06Cracking HiTag2 Crypto Kevin Sheldrake Workshop
2021-10-06Hypervisor Assisted Ring0 Debugging with radare2 Lars Haukli


Tags:
data
hacker
security
computer
cyber
internet
technology
hacking
attack
digital
information
hack
online
crime
password
code
web
concept
thief
protection
network
scam
fraud
malware
secure
identity
criminal
phishing
software
system
firewall
communication
business
privacy
binary
account
spy
programmer
program
spyware
hacked
hacking conference
conference
learn
how to
2022
2021
cybersecurity
owned
break in
google
securing
exploit
exploitation
recon
social engineering
Olivier Bilodeau
iot