The ROPEMAKER Email Exploit: Is There Any Defense Against It?

Presented at Black Hat Europe 2017, Dec. 6, 2017, 11:35 a.m. (25 minutes)

Do you think email is immutable once delivered? The ROPEMAKER exploit shows this is not the case! We will introduce the exploit, disclose the latest research covering it, and show a live demonstration of the exploit in action. The presenters will also offer some mitigation techniques to help address this attack while also highlighting potential consequences of an attacker using it in the wild.

Presenters:

• Matthew Gardiner - Security Strategist, Mimecast
  Matthew is focused on email & Web security, malware, and cloud security. With more than 15 years in security, Matthew’s expertise in various roles includes threat detection & response, network monitoring, SIEM, threat intelligence, identity & access management, Web access management, identity federation, cloud security, and IT compliance
• Trevor Luker - Security Operations & Threat Intelligence, Mimecast
  Coming from a deep technology & development background, Trevor has been active in information security for more than 20 years. He has experience across a wide range of industries, from defense and aviation through to finance, commodities trading and energy.

Links:

• https://www.blackhat.com/eu-17/sponsored-sessions/schedule/#the-ropemaker-email-exploit-is-there-any-defense-against-it-9594

Similar Presentations:

• DerbyCon 6.0 Recharge (2016) / Hunting for Exploit Kits
• HOPE X (2014) / PRISM-Proof Email: Why Email Is Insecure and How We Are Fixing It
• ToorCon: Seattle 2008 / State of the Exploit