| PRESENTER: | Lucas Apa, Security Researcher for IOActive and Carlos Penagos, Senior Security Researcher for IOActive |
| PRESENTATION: | Compromising Industrial Facilities From 40 Miles Away |
| CONFERENCE: | PacSec 2013 Conference |
| LOCATION: | Aoyama Diamond Hall, Tokyo Japan |
| DATE & TIME: | Wednesday November 13, 2013 at 10:50am |
| INFO: | http://pacsec.jp/index.html |
Lucas Apa and Carlos Penagos uncovered multiple critical vulnerabilities in wireless technologies that are extensively used in the ICS world. Recently, they conducted a security assessment of the next generation deep-sea oil platforms and discovered that a carefully developed security architecture and its careful implementation is essential regardless of the location. In their presentation, Lucas and Carlos reveal the dangers of using poorly implemented and vulnerable communication technologies in facilities that are inherently high profile targets for terrorists where the price of an attack can be catastrophic. Their presentation will help you understand and appreciate the measures that you need to take to mitigate and protect against this new class of threat.
About Lucas Apa
Lucas Apa is a Security Researcher at IOActive, Inc. His main interests are exploitation techniques, embedded reverse engineering, kernel vulnerability research, and cryptography. Focused on offensive security, he publicly discovered critical vulnerabilities in Microsoft® Windows®, Siemens access controls and Apache products. His work has been presented at conferences including Ekoparty, and Black Hat Europe. As a Security Consultant, he provides comprehensive security services working with a majority of Global 500 companies including power and utility, game, hardware, financial, media, retail, aerospace, healthcare, high-tech, social networking, and software development organizations. Lucas is currently pursuing a graduate degree in Computer Engineering.
About Carlos Penagos
Carlos Penagos is a Senior Security Researcher and consultant for IOActive. He has worked around the world doing consulting and security training. His main areas of expertise are exploitation, reverse engineering, bug hunting, and cryptography. Carlos holds a Bachelor’s degree in Computer Science and has been awarded science merit honours for his graduation thesis. In his free time he disclosed several vulnerability advisories to US-CERT, ICS-CERT and CN-CERT for the world’s most used SCADA/HMI. He also likes coding theory, number theory, and ECC.
About PacSec
The PacSec meeting provides an opportunity for foreign specialists to be exposed to Japanese innovation and markets and collaborate on practical solutions to computer security issues. In a relaxed setting with a mixture of material bilingually translated in both English and Japanese, the eminent technologists can socialize and attend training sessions.
About IOActive
IOActive is a comprehensive, high-end information security services firm with a long and established pedigree in delivering elite security services to its customers. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment through to semiconductor reverse engineering. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, USA, with global operations through the Americas, EMEA and Asia Pac regions. Visit www.ioactive.com for more information.
-###-