Breaking AV software

Presented at Kiwicon 8: It's always 1989 in Computer Security (2014), Dec. 12, 2014, 4:30 p.m. (45 minutes)

Antivirus software is a common component of today's computer systems ranging from home users to corporate and government servers. However, security issues related to the AV software itself are not usually considered when deploying such security solutions. Users are not fully conscious of the issues related to using AV software and some AV vendors do not put the required effort in securing their products. In this talk we will cover vulnerability discovery and remote exploitation of AV software. During the talk the details of a number of vulnerabilities, both 0days and recently fixed ones, will be published. The talk aims to raise the level of awareness about the security of AV software to both users and vendors.


Presenters:

  • Joxean "@matalaz" Koret
    Joxean Koret has been working for the past 14 years in many different computing areas. He started working as database software developer and DBA for a number of different RDBMS. Afterwards he got interested in reverse engineering and applied this knowdlege to the DBs he was working with, for which he has discovered dozens of vulnerabilities in products from the major database vendors, specially in Oracle software. He also worked in other security areas like malware analysis and anti-malware software development for an Antivirus company or developing IDA Pro at Hex-Rays. He is currently a security researcher in Coseinc.

Links:

Similar Presentations: