MENLO PARK, CA--(Marketwired - May 17, 2016) - SafeBreach, a leading innovator of continuous security validation, today announced that CTO and Co-Founder Itzik Kotler and Vice President of Security Research Amit Klein will address new security research on the perfect exfiltration techniques at the seventh annual Hack In The Box Security Conference (HITBSecConf2016) being held May 23-27, 2016 at the NH Grand Krasnapolsky in Amsterdam, Netherlands. As part of SafeBreach Labs' goal of developing a playbook of hacker breach scenarios to power its continuous security validation platform, the team researches and develops new and unique methods.
HITBSecConf2016 - Amsterdam features two and three days of technical trainings, followed by two days of interactive sessions and a technology exhibition. Recognized for its technical depth, the conference will uncover the latest attack and defense techniques. From new ways to break out of sandboxes to the endless amount of Internet of Things (IoT) devices, HITBSecConf brings to light these underground technologies and practices that will help companies defend against today's sophisticated cyber threats. On the final day of the conference, SafeBreach's security experts will demonstrate the perfect exfiltration and also reveal a new technique discovered in the company's latest research.
In Plain Sight: The Perfect
According to this year's Verizon data breach report, 82% of attacks compromise systems within minutes (time to compromise), while in 68% of breaches, data exfiltration occurs within days (time to exfiltration). 99% of malware hashes are seen for only 58 seconds or less. In fact, most malware was seen only once. This reflects how quickly hackers are modifying their code to avoid detection. In the majority of cases, the impacted organization doesn't even realize they've been breached until informed by third-parties.
In this session, Kotler and Klein will demonstrate the perfect exfiltration via indirect covert channels (i.e. the communicating parties don't directly exchange network packets.) A family of techniques will be revealed to show how data can be leaked from an organization without raising any suspicion. These techniques are designed to overcome even perfect knowledge and analysis of the enterprise network traffic.
- Friday, May 27, 2016 | 2:00 - 3:00 p.m. CEST
- Track 1 | NH Grand Krasnapolsky, Dam 9, Amsterdam, Unknown, 1012 JS, Netherlands
Funded by Sequoia Capital and investor Shlomo Kramer, SafeBreach is a pioneer in the emerging category of continuous security validation. The company's groundbreaking platform provides a "hacker's view" of an enterprise's security posture for total and continuous security assessment, validation and reporting. SafeBreach automatically executes breach methods with an extensive and growing Hacker's Playbook™ of research and real-world investigative data. For more information, visit www.safebreach.com or follow on Twitter @SafeBreach.