SafeBreach Labs Presenting Research on Data Exfiltration Using Cloud-based Anti-Virus and Hacking Techniques Exploiting Windows BITS
SUNNYVALE, CA - Jul 18, 2017. SafeBreach, the leading provider of Breach and Attack Simulations, will present SafeBreach Labs research on two significant cybersecurity vulnerabilities at the 2017 Black Hat conference at Mandalay Bay and the DEF CON 25 Hacking conference at Caesar's Palace taking place July 22-30 in Las Vegas.
At Black Hat on Thursday, July 27 from 5:00 - 6:00 p.m. PDT in South Seas CDF, SafeBreach Co-founder and CTO Itzik Kotler and Vice President of Security Research Amit Klein will present The Adventures of Anti-Virus (AV) and the Leaky Sandbox, a presentation and demo detailing a novel technique for exfiltrating data from highly secure enterprises by using a cloud-enhanced anti-virus vulnerability where the Internet-connected AV sandbox actually facilitates the exfiltration. At DEF CON, Kotler and Klein will also present AV and the Leaky Sandboxon Friday, July 28 from 4:00 - 4:45 p.m. PDT in Track 2.
On the final day of DEF CON on Sunday, July 30 at 10:20 a.m. PDT in Track 3, SafeBreach Security Researcher Dor Azuri will present a 20 minute demonstration of BITSInject, a hacking technique that exploits a flaw in Windows BITS' object serialization model and uses it to change job properties, run programs and execute other unauthorized functions.
"One of the great things about Black Hat and DEF CON is seeing and being part of the industry's best and brightest showing off their research and advancing the cause of information security," Kotler said. "The team at SafeBreach Labs works hard year-round to discover, understand and mitigate novel vulnerabilities from the hacker's point-of-view to provide our customers better insight into where the vulnerabilities are so they can be better prepared to anticipate and thwart the next attack. We're excited to have been chosen to present two different sessions this year."
SafeBreach is also exhibiting at Black Hat at booth #1466 where product experts, security researchers and executives will be available to discuss attack trends, techniques and tactics and the rise in organizational war gaming. Be sure to inquire about SafeBreach's recently published Hacker's Playbook, including the recent Ransomware Edition.
SafeBreach is a pioneer in the emerging category of breach and attack simulation. The company's ground-breaking platform provides a "hacker's view" of an enterprise's security posture to proactively predict attacks, validate security controls and improve SOC analyst response. SafeBreach automatically executes thousands of breach methods from an extensive and growing Hacker's Playbook™ of research and real-world investigative data. Headquartered in Sunnyvale, California, the company is funded by Sequoia Capital, Deutsche Telekom Capital, Hewlett Packard Pathfinder and investor Shlomo Kramer. For more information, visit www.safebreach.com or follow on Twitter @SafeBreach.