Aditya K Sood
| Title: | Sr. Security Researcher, Vulnerability Research Labs (VRL) |
| Company: | Armorize |
Aditya K Sood is a Sr. Security Practitioner at Armorize. He has already worked in the security domain for COSEINC and KPMG. He is RA at Michigan State University and founder of SecNiche Security, an independent security research arena for cutting edge research. He holds MS in Information Security and has experience of 6 years in working in security. He is an active speaker at conferences like RSA (US 2010), EuSecwest, XCON, Troopers, OWASP AppSec, FOSS, CERT-IN etc. He has written content for HITB Ezine, Hakin9, Usenix Login,Elsevier Journals, Debugged etc and has been quoted at eWeek, SCMagazine and ZDNet.
Scaling Web 2.0 Malware Infections
Domain: Deep Analysis of Malwares and New Trends
Note: The talk sheds light on the new trends of web based malware. Technology and Insecurity goes hand in hand. With the advent of new attacks and techniques the distribution of malware through web has been increased tremendously. Browser based exploits mainly Internet Explorer have given a birth to new world of malware infection. The attackers spread malware elegantly by exploiting the vulnerabilities and drive by downloads. The infection strategies opted by attackers like malware distribution through IFRAME injections and Search Engine Optimization. In order to understand the intrinsic behavior of these web based malware a typical analysis is required to understand the logic concept working behind these web based malwares. It is necessary to dissect these malwares from bottom to top in order to control the devastating behavior. The talk will cover structured methodologies and demonstrate the static, dynamic and behavioral analysis of web malware including PCAP analytics. Demonstrations will prove the fact and necessity of web malware analysis.
Disclaimer: For Educational Purposes Only
This talk is pure research based and we will be demonstrating a concept of web based malware which has not been out anywhere yet. The basic aim is to show the incessant infection through web. We have worked over this proof of concept and the way browsers with flaws can infect the system and application software’s. For better understanding this malware will infect the Adobe PDF functionalities by exploiting the Trust Functions there by elevating privileges. This PDF exploitation method has not been discussed before and this time it has been deduced as a part of malware infection and other stealth factors too. We will disseminate step by step and the way this works to show malware like these can be triggered in coming time
We will also speak about Internet Explorer 8 Design flaws which can be exploited by malware to perform rogue functioning.
The audience will learn the new aspects of web malware analysis and nurture the concepts by the demonstration given.