The Commercial Malware Industry

Presented at DEF CON 15 (2007), Aug. 4, 2007, 5 p.m. (50 minutes)

Malware has come a long way since it consisted mostly of small-scale (if prolific) nuisances perpetrated by script kiddies. Today, it's increasingly being created by professional programmers and managed by international criminal organisations. This talk will look at the methods and technology employed by the professional malware industry, which is turning out "product" that matches (and in some cases even exceeds) the sophistication of standard commercial software, but with far more sinister applications.

Presenters:

• Peter Gutmann
  Peter Gutmann is a researcher in the Department of Computer Science at the University of Auckland, New Zealand, working on the design and analysis of cryptographic security architectures. He helped write the popular PGP encryption package, has authored a number of papers and RFC's on security and encryption including the X.509 Style Guide for certificates, and is the author of "Cryptographic Security Architecture: Design and Verification" (published by Springer-Verlag) and the open source cryptlib security toolkit. In his spare time he pokes holes in whatever security systems and mechanisms catch his attention and grumbles about PKIs and the (un-)usability of security applications.

Links:

• https://defcon.org/html/defcon-15/dc-15-speakers.html#Gutmann
• https://infocon.org/cons/DEF CON/DEF CON 15/DEF CON 15 video/DEF CON 15 - Peter Gutmann - Commercial Malware Industry - Video.mp4
• https://www.youtube.com/watch?v=VSdsrWTyL8A

Tags:

• Malware

Similar Presentations:

• DerbyCon 6.0 Recharge (2016) / Writing malware while the blue team is staring at you
• DEF CON 14 (2006) / Hacking Malware: Offense Is the New Defense
• DerbyCon 3.0 All in the Family (2013) / The Malware Management Framework, a process you can use to find advanced malware. We found WinNTI with it!