PRESS

PRESENTERS: Robert Zigweid, Director of Services for IOActive, and David Baker, Chief Security Officer for Okta PRESENTATION: Cloud Security Through Threat Modeling  CONFERENCE: Cloud Security Alliance Congress LOCATION: The Rosen Centre Hotel, Orlando, Florida, USA DATE & TIME: Thursday December 5, 2013 at 10:15am INFO: http://www.cloudsecuritycongress.com   One of the most effective tools developers can implement in their security development lifecycle programs is threat modeling. Robert and David will discuss how effective threat modeling techniques enable developers to uncover security vulnerabilities before code is even written. Together they will reveal…

PRESENTER: Wim Remes, Managing Consultant for IOActive PRESENTATION: Cultural Learning Of China To Make Benefit Glorious Profession Of Infosec CONFERENCE: DeepSec 2013 LOCATION: The Imperial Riding School Vienna, Austria DATE & TIME: Thursday November 21, 2013 at 9:10am INFO: https://deepsec.net/index.html   The current debate about China’s role in international hacking incidents and corporate espionage has largely been framed in a US-centric narrative. This fails to account for the fact that China was familiar with innovation, economic, and societal (im)balances long before Christopher Columbus accidentally landed in the…

PRESENTER: Eireann Leverett, Senior Security Consultant for IOActive PRESENTATION: Vulnerability Inheritance in Programmable Logic Controllers CONFERENCE: GreHack 2013 LOCATION: Amphi Vaujany Grenoble, France DATE & TIME: Friday November 15, 2013 at 12:35pm INFO: http://grehack.org/en/   Eireann Leverett will deliver an academic paper that illustrates how over 200 types of PLCs and EWSs share a common runtime library. This commonality makes them susceptible to authentication bypass vulnerabilities discovered by Reid Wightman, Senior Security Consultant at IOActive, over a year ago. Using this flaw, an unauthenticated attacker could upload…

PRESENTER: Lucas Apa, Security Researcher for IOActive and Carlos Penagos, Senior Security Researcher for IOActive PRESENTATION: Compromising Industrial Facilities From 40 Miles Away CONFERENCE: PacSec 2013 Conference LOCATION: Aoyama Diamond Hall, Tokyo Japan DATE & TIME: Wednesday November 13, 2013 at 10:50am INFO: http://pacsec.jp/index.html   Lucas Apa and Carlos Penagos uncovered multiple critical vulnerabilities in wireless technologies that are extensively used in the ICS world. Recently, they conducted a security assessment of the next generation deep-sea oil platforms and discovered that a carefully developed security architecture and its careful implementation…

PRESENTERS: Sofiane Talmat, Senior Security Consultant and Andy Saunders, Managing Consultant for IOActive PRESENTATION: Meters: The Risk of Being Smart CONFERENCE: Kraft IS 2013 LOCATION: Thon Hotel Oslo Airport, Gardermoen, Norway DATE & TIME: Thursday November 14, 2013 at 2:45pm INFO: http://norsis.no/nyheter/2013-10-07-kraftis.html   Utility companies across the globe are replacing existing meters with smart meters and promoting them as tools to manage ever-increasing energy bills. Unfortunately, the increased functionality of these smart devices makes them more vulnerable to attack. IOActive’s presenters will trace the evolution of the smart meter and…