VDLDS - All Your Voice Are Belong To Us

Presented at DEF CON 19 (2011), Aug. 7, 2011, 4 p.m. (50 minutes)

Anytime you want to bypass the system, you tend to have a telephone conversation instead of leaving a paper trail. Data Leakage Prevention (DLP) is on top of the list for most organizations, be it financial or medical industry. In order to overcome this issue we need to devise a new system that can monitor phone conversations. Voice Data Leakage Detection System can be used for tracking Credit card, social security numbers, along with other PII data. An extension of this can be used for tracking Accounting and Financial information that leaves the organization before the information is actually public. This will help spot the people leaking insider information to traders, competitors and other news sources. By utilizing a signature system, each environment can quickly capture sensitive information like Acquisition/Sale of organization, or honeypot data to find the insider leaks.

Presenters:

• Don LeBert - Security Engineer, GoDaddy.com
  Don LeBert currently works as a Security Engineer for GoDaddy.com Inc. He has been working with hosting providers for the past 5 years filling the role of Networking Administrator, Server Administrator and Server Manager. Don currently holds a Bachelors degree in Information Systems and Masters degree in Information Security.
• Ganesh Devarajan - Sr. Security Architect, GoDaddy.com
  Ganesh Devarajan is the Sr. Security Architect within Go Daddy's Security Research Team. His focuses are Web Applications security, Malware Analysis, Reputation Service and Cloud security. Ganesh has a wide variety of experience in his field. Prior to joining Go Daddy in 2010, he worked as a security researcher for the TippingPoint DVLabs and THECASE Research Center in Syracuse, NY. He has publications in a variety of fields, ranging from Supervisory Control and Data Acquisition (SCADA) Securities, Role Based Access Control (RBAC), Wireless Securities and Runtime Software Application patches. His talks have been presented at various venues, including RSA, Department of Defense (DoD) Cybercrime conference, Computer Security Convention DEFCON, LayerOne, Reboot, National Petrochemicals & Refiners Association (NPRA), SMi, Hawaii International Conference on Social Sciences (HICSS), International Information Security Conference (IFIP/SEC) and Hacker Halted.

Links:

• https://defcon.org/html/defcon-19/dc-19-speakers.html#Devarajan
• https://infocon.org/cons/DEF CON/DEF CON 19/DEF CON 19 video and slides/DEF CON 19 - Ganesh Devarajan and Don LeBert - VDLDS All Your Voice Are Belong To Us - Video and Slides.mp4 (Video and Slides)
• https://www.youtube.com/watch?v=r8HME7X0EN0

Similar Presentations:

• May Contain Hackers (MCH2022) / Collect all the data (more than you ever need)
• Still Hacking Anyway (SHA2017) / Exploiting Twitter with Tinfoleak for investigative purposes