Deep Look Into a Chinese Advanced Attack

     “Many say the Chinese are behind many attacks on US companies. In this case, it is true. The Chinese have been successfully attacking this industry for years. We managed to detect and eradicate their attacks year after year and they up their game each time. The latest attack is more sophisticated and avoided many techniques we used to detect them in the past, but not all. What if I were to tell you that I could infect your management, backup and Anti-Virus software and use it to persist my malware on reboot?”

This talk will describe what the malware did, how it works, where it hides, how it persisted and how we detected it. We must learn from and understand advanced attacks to better defend ourselves from these persistent adversaries. This talk will discuss what tools worked and why as well as walk you through what the malware did in detail.

VIDEO BY Michael Gough

derbycon

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s