Qualys Researchers to Present Groundbreaking Malware Research and Cybercriminal Evasion Techniques at Black Hat USA 2012
Researchers to Also Participate in Def Con 20 and Security B-Sides Las Vegas
REDWOOD CITY, Calif., July 17, 2012 – Qualys®, Inc., a pioneer and leading provider of cloud security and compliance solutions, today announced that its researchers will present their latest findings at Black Hat USA 2012, Security B-Sides Las Vegas and Def Con 20 sessions next week in Las Vegas, Nevada. The sessions will cover a wide range of information security topics, including flaws in Web Application Firewalls (WAFs), the latest malware trends, android application security, use of Websockets in HTML5 and vulnerability management for IPv6.
At Black Hat USA 2012, taking place in Caesar’s Palace on July 25-26, Qualys researchers will present:
|SESSION:||Confessions of a WAF Developer: Protocol-Level Evasion of Web Application Firewall|
|DATE:||Wednesday, July 25 at 11:45 a.m. PT|
|SPEAKER:||Ivan Ristic, director of engineering, Qualys|
|OVERVIEW:||Ristic will identify flaws in ModSecurity and demonstrate how many virtual patches can be trivially bypassed. As part of this talk, Ristic will also release a catalogue of protocol-level evasion techniques and a complete testing suite.|
|SESSION:||A Scientific (But Non Academic) Study of How Malware Employs Anti-Debugging, Anti-Disassembly and Anti-Virtualization Technologies|
|DATE:||Thursday, July 26 at 10:15 a.m. PT|
|SPEAKER:||Rodrigo Branco, director of vulnerability and malware research, Qualys|
|OVERVIEW:||Branco will discuss common evasion techniques that malware authors employ and present an analysis on the real state of evasion techniques in use by malware today. The resulting data will help security companies and researchers around the world to focus their attention on making their tools and processes more efficient to rapidly avoid malware author countermeasures.|
|SESSION:||Hacking with WebSockets|
|DATE:||Thursday, July 26 at 2:15 p.m. PT|
|SPEAKERS:||Sergey Shekyan, senior software engineer, Qualys; and Vaagn Toukharian, developer, Qualys|
|OVERVIEW:||Shekyan and Toukharian will explore WebScocket security and how WebSockets are being used as an effective hacking framework within the context of HTML5. This session will also provide tips for deploying WebSockets securely.|
Qualys will also be showcasing customer case studies, security research and demonstrations of its QualysGuard Cloud Platform and suite of IT security and compliance solutions at booth #401 at the conference.
Security B-Sides Las Vegas, taking place at The Artisan Boutique Hotel on July 25-26, will feature:
|SESSION:||Introducing Android Security Evaluation Framework|
|DATE:||Wednesday July 25, 5pm|
|SPEAKER:||Parth Patel, vulnerability QA engineer for Qualys|
|OVERVIEW:||Have you ever looked at your Android application and wondered if it was watching you as well? The Android Security Evaluation Framework evaluates android applications, harvesting behavioral data, analyzing run patterns, and providing an interface to facilitate security tests.|
|DATE:||Thursday July 26, 6pm|
|PANELIST:||Wolfgang Kandek, CTO for Qualys|
|OVERVIEW:||Panel discussion on IPv6 security.|
Def Con 20, held at the Rio Hotel July 26-29, will include:
|SESSION:||Overwriting the Exception Handling Cache Pointer – Dwarf Oriented Programming|
|DATE:||Saturday July 28, 2pm|
|SPEAKERS:||Rodrigo Branco, director of vulnerability and malware research, Qualys; James Oakley, programmer; and Sergey Bratus, research assistant professor of computer science, Dartmouth College|
|OVERVIEW:||This presentation describes a new technique for abusing the DWARF exception handling architecture used by the GCC tool chain. This technique can be used to exploit vulnerabilities in programs compiled with or linked to exception-enabled parts.|
For more information on Qualys events next week in Las Vegas, visit: http://www.qualys.com/blackhat.
About QualysGuard Cloud Platform
The QualysGuard Cloud Platform and its integrated suite of security and compliance solutions provide organizations of all sizes with a global view of their security and compliance posture, while drastically reducing their total cost of ownership. The QualysGuard Cloud Suite, which includes Vulnerability Management, Web Application Scanning, Malware Detection Service, Policy Compliance, PCI Compliance and Qualys SECURE Seal, enable customers to identify their IT assets, collect and analyze large amounts of IT security data, discover and prioritize vulnerabilities and malware, recommend remediation actions and verify the implementation of such actions.
Qualys, Inc., is a pioneer and leading provider of cloud security and compliance solutions with over 5,700 customers in more than 100 countries, including a majority of each of the Forbes Global 100 and Fortune 100. The QualysGuard Cloud Platform and integrated suite of solutions helps organizations simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including BT, Dell SecureWorks, Fujitsu, IBM, NTT, Symantec, Verizon, and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA).
Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.