Learn How to Speak Malware: A New Approach to Combat Attacks
Todd O'Boyle at BSides Boston 2017
In order for an attacker to steal from you, they need persistent access. This means ensuring their C2 is reliable and resilient to takedown. That’s the main reason why over 90% of malware uses DNS for command & control and exfiltration. The good news is that this persistence is something we can use against the attackers in order to find their accesses and then improve how we respond.
In this session geared toward security operators and incident responders, Todd O’Boyle of Percipient Networks will explain a new approach that goes beyond simply blocking and dropping malware C2. Attendees will learn how to “speak malware” in order to better respond when an attacker targets them.
In this session geared toward security operators and incident responders, Todd O’Boyle of Percipient Networks will explain a new approach that goes beyond simply blocking and dropping malware C2. Attendees will learn how to “speak malware” in order to better respond when an attacker targets them.