The Unseen Dangers of Bloatware

Presented at REcon 2019, June 29, 2019, 4:30 p.m. (30 minutes).

.

When we think of Remote Code Execution or Local Privilege Escalation vulnerabilities in mass, we might think of vulnerabilities in the operating system, but another attack vector to consider is “What third-party software came with my PC?”. In this talk, I'll be looking at the software that comes with all new Dell machines running Windows called "Dell SupportAssist" and the Lenovo driver update tool "Lenovo Service Bridge" to show how it exposes users to significant security risks. The talk will revolve around the idea of security versus convenience as we analyze the critical vulnerabilities I found that affected both the Dell and Lenovo community.

Presenters:

• Bill Demirkapi
  Bill is a 17-year-old high school student with an intense passion for the information security field. Bill's interests include game hacking, reverse engineering malware, and breaking things. Next year, Bill will be attending the Rochester Institute of Technology where he hopes to grow his career and knowledge in the enormous field of Cybersecurity. In his pursuit to make the world a better place, Bill constantly looks for the next big vulnerability following the motto "break anything and everything".

Links:

• https://cfp.recon.cx/reconmtl2019/talk/NMVCKD/
• https://infocon.org/cons/REcon/REcon 2019 Montreal/REcon 2019 Montreal videos/Bill DemirKapi.The Unseen Dangers of Bloatware-SWuxeYIcvlfia.mp4

Similar Presentations:

• ToorCon San Diego 18 (2016) / Pwn all the Peripherals: MouseJack, KeyJack, and KeySniffer