Presented at
DEF CON China Beta (2018),
May 11, 2018, noon
(60 minutes).
Google products have a good reputation and are synonymous with reasonably high and reliable levels of security. However, in this talk, Fabian and Gonzalo will focus to show a case of how Google Earth will be the vector attack to make an antimalware evasion by a technique of malware injection into memory, and evading the Google Earth sandbox.
Three scopes will be covered during the conference:
- Google Session Hijacking
- Remote Code Execution (Remote Shell)
- Javascript malware execution (Monero Minning)
Presenters:
-
Gonzalo Sanchez
Fabian Cuchietti (Argentina '90) started in the security world at a very young age. Member of the Hall of Fame of companies such as Google, Facebook, Apple, Microsoft, Mozilla or Paypal. He was one of the first south american members of Synack's Red Team. Since 2015 he has been working as Red Team Member at Internet Security Auditors.
Gonzalo Sanchez (Spain '81) is Red Team Leader in Internet Security Auditors and is manager of the hacking team of Madrid, Barcelona and Bogotá.
Fabian and Gonzalo meet at ISEC Auditors and are working together building crazy big things.
-
Fabián Cuchietti
as Fabian Cuchietti
Fabian Cuchietti (Argentina '90) started in the security world at a very young age. Member of the Hall of Fame of companies such as Google, Facebook, Apple, Microsoft, Mozilla or Paypal. He was one of the first south american members of Synack's Red Team. Since 2015 he has been working as Red Team Member at Internet Security Auditors.
Gonzalo Sanchez (Spain '81) is Red Team Leader in Internet Security Auditors and is manager of the hacking team of Madrid, Barcelona and Bogotá.
Fabian and Gonzalo meet at ISEC Auditors and are working together building crazy big things.
Links:
Similar Presentations: