Analyzing Malware at Scale - John Hammond - PSW #845

This episode of Paul Security Weekly features John Hammond, a senior security researcher from Huntress, discussing malware analysis. Hammond dives into the analysis of Ocean Lotus attacks, highlighting the use of stealthy techniques like alternate data streams and DLL side-loading. The conversation also touches on the challenges of combating attackers who leverage ‘bring your own vulnerable driver’ techniques to gain kernel-level privileges. The hosts discuss the need for secure-by-default configurations and the ongoing struggle to combat attackers who exploit vulnerabilities. The episode concludes with a discussion on how to improve the security of the industry.

Segment Resources:

• https://www.huntress.com/blog/the-hackers-in-the-arena-the-huntress-ctf-retrospective
• https://www.huntress.com/blog/fake-browser-updates-lead-to-boinc-volunteer-computing-software

Show Notes: https://securityweekly.com/psw-845