Industry leading cybersecurity research team to provide insights in Social Media Manipulation, Malware Research Tools and Penetration Testing
Waltham, MA – GoSecure, a leading provider of Managed Detection and Response (MDR) services and a Predictive Endpoint Detection and Response (EDR) platform, will be presenting three technical sessions at Black Hat, the world’s leading information security event. Members of GoSecure’s Red Team and Research and Development Team will be sharing their cutting-edge research and in-depth knowledge on Social Network Manipulation, Malware Research Tools and Penetration Testing.
“We are extremely proud of our research team for being selected to deliver three presentations at Black Hat,” said Neal Creighton, GoSecure CEO. “Our security research teams are tireless in identifying the latest attacks and cyberthreat trends, and we’re excited for them to share their findings with the cybersecurity community.”
Behind the Scenes: The Industry of Social Media Manipulation Driven by Malware
Location: South Seas ABE
Date: Wednesday, August 7 | 11:15 am-12:05 pm
Olivier Bilodeau, Director of Cybersecurity Research, and Masarah Paquet-Clouston, Security Researcher at GoSecure will discuss their four-year-long investigation that started with analyzing an IoT botnet and led to discovering the structured industry that exists behind social media manipulation (SMM). SMM is the deliberate act of paying for popularity with followers or activity on social media. From traffic fingerprinting to panel clustering and forum inquiries, the presenters will uncover the whole supply chain: malware suppliers, bulk resellers, panel software providers and hucksters. Different approaches to disrupt social media manipulation will also be discussed, giving practical insights for cybersecurity professionals, law enforcement agencies, and policymakers willing to curb this illicit industry.
Malboxes
Location: Business Hall (Oceanside), Arsenal Station 2
Date: Thursday, August 8 | 10:00 am-11:20 am
For security researchers, building analysis machines is a tedious task with little automation. Olivier Bilodeau, Director of Cybersecurity Research, will demonstrate Malboxes, a tool that streamlines and simplifies the creation and management of virtual machines used for malware analysis. Attendees will learn a simple tool for safe malware analysis practice that is easy to grasp, enabling them to start doing analysis faster. Seasoned malware researchers will also gain from this demo by seeing how the DevOps approach can be applied to simplify and accelerate their labs’ malware reverse-engineering capacity or reduce its management overhead.
PyRDP: Python 3 Remote Desktop Protocol Man-in-the-Middle (MITM) and Library
Location: Business Hall (Oceanside), Arsenal Station 4
Date: Thursday, August 8 | 11:30am-12:50pm
Francis Labelle and Emilio Gonzalez, members of the GoSecure research and development team, will demonstrate PyRDP, an RDP man-in-the-middle tool that has applications in pentesting and malware research. On the pentesting side, the demo will showcase features that allow attackers to compromise RDP sessions when combined with TCP man-in-the-middle solutions. On the malware research side, PyRDP can be used as part of a fully interactive honeypot where it can be placed in front of a Windows RDP server to intercept malicious sessions. The team will present various capabilities of the tool that helps accelerate malware analysis for security researchers.
About GoSecure
GoSecure is a recognized cybersecurity leader, delivering innovative managed security solutions and expert advisory services. GoSecure Titan® managed security solutions deliver multi-vector protection to counter modern cyber threats through a complete suite of offerings that extend the capabilities of our customers’ in-house teams. GoSecure Titan Managed Detection & Response (MDR) offers a best in class mean-time-to-respond, with comprehensive coverage across customers’ networks, endpoints and inboxes. For over 10 years, GoSecure has been helping customers better understand their security gaps, improve organizational risk and enhance security posture through advisory services provided by one of the most trusted and skilled teams in the industry.
