all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

DEF CON 31 - Defender Pretender When Windows Defender Updates Become a Security Risk -Bar, Attias

Add to bookmarks
Sept. 15, 2023, 9:29 p.m. | DEFCONConference

DEFCONConference www.youtube.com

The signature update process is critical to EDR's effectiveness against emerging threats. The security update process must be highly secured, as demonstrated by the Flame malware attack that leveraged a rogue certificate for lateral movement. Nation-state capabilities are typically required for such an attack, given that signature update files are digitally signed by Microsoft.

We wondered if we could achieve similar capabilities running as an unprivileged user without possessing a rough certificate, instead we aimed to turn the original Windows …

attack capabilities certificate con critical def def con def con 31 defender edr emerging emerging threats lateral movement malware malware attack nation pretender process risk rogue security security risk security update signature state threats update updates windows windows defender

Visit resource

More from www.youtube.com / DEFCONConference

DEF CON 31 DCGVR Village - Allen Baranov -What Is A GRC Hacker 1 month ago | www.youtube.com
con def def con def con 31 +5
DEF CON 31 - There Are No Mushroom Clouds in Cyberwar - Mieke Eoyang 7 months, 2 weeks ago | www.youtube.com
clouds con conflict culture +20
DEF CON 31 - A Broken Marriage Abusing Mixed Vendor Kerberos Stacks - Ceri Coburn 7 months, 2 weeks ago | www.youtube.com
abusing active directory authority con +19
DEF CON 31 - Contactless Overflow Code Execution in Payment Terminals & ATMs - Josep … 7 months, 2 weeks ago | www.youtube.com
atm atms code code execution +20
DEF CON 31 - The GitHub Actions Worm - Asi Greenholts 7 months, 2 weeks ago | www.youtube.com
actions attacker attackers con +14
DEF CON 31 - Defeating VPN Always On - Maxime Clementz 7 months, 2 weeks ago | www.youtube.com
access always on attack attack surface +22
DEF CON 31 Car Hacking Village - Automotive USB Fuzzing - Euntae Jang, Donghyon Jeong, … 7 months, 2 weeks ago | www.youtube.com
automotive automotive industry car car hacking +17
DEF CON 31 - Contextualizing The Vulkan Leaks & State Sponsored Offensive Ops - Joe … 7 months, 2 weeks ago | www.youtube.com
analysis con def def con +17
DEF CON 31 Car Hacking Village - Abusing CAN Bus Spec for DoS in Embedded … 7 months, 2 weeks ago | www.youtube.com
abusing automotive bus can bus +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Director, Cyber Risk

@ Kroll | South Africa
View on infosec-jobs.com

Security Engineer, XRM

@ Meta | New York City
View on infosec-jobs.com

Security Analyst 3

@ Oracle | Romania
View on infosec-jobs.com

Internship - Cyber Security Operations

@ SES | Betzdorf, LU
View on infosec-jobs.com

Principal Product Manager (Network/Security Management) - NetSec

@ Palo Alto Networks | Bengaluru, India
View on infosec-jobs.com

IT Security Engineer

@ Timocom GmbH | Erkrath, Germany
View on infosec-jobs.com
View more jobs