Date & Time: April 10, 2019
Location: Singapore
Speaker: Rob Ragan and Oscar Salazar
Date & Time: April 10, 2019
Location: Singapore
Speaker: Rob Ragan and Oscar Salazar
Bitflips happen more than you know, especially on mobile devices and especially on cheap phones with memory that has higher FIT rates (Failures-In-Time). In the past, encryption in-transit (TLS/SSL) would have protected you against the most dangerous opportunistic attackers because it was cost prohibitive. Today however, certificates are free. Free for you and threat actors, thanks to Let’s Encrypt and major cloud providers. While free certificate authorities are a net positive for internet security, we already know attackers are leveraging the HTTPS lock for subverting security awareness training and more successful phishing. What about corporate espionage? That’s precisely what we investigated and will demonstrate with this talk.
Demonstrations with bitsquatting include:
Investigations will include:
Come witness an unfortunate side effect to achieving HTTPS everywhere and learn what can be done to mitigate the risk of this threat. Bad guys beware, good guys beware, anyone could be passively and opportunistically snooping on your packets.
Partner Rob Ragan and Principal Security Associate Oscar Salazar will present their Ghost in the Browser: Broad-Scale Espionage with Bitsquatting talk at Kaspersky SAS in Singapore on Wednesday, April 10, 2019.
Please get in touch with our Speaker Bureau program manager, Virginie Jenck. Please email her at contact@bishopfox.com
8240 S. Kyrene Rd.
Suite A113
Tempe, AZ
85284
United States