Industry leading cybersecurity research team to provide insights in Social Media Manipulation, Malware Research Tools and Penetration Testing
Waltham, MA – GoSecure, a leading provider of Managed Detection and Response (MDR) services and a Predictive Endpoint Detection and Response (EDR) platform, will be presenting three technical sessions at Black Hat, the world’s leading information security event. Members of GoSecure’s Red Team and Research and Development Team will be sharing their cutting-edge research and in-depth knowledge on Social Network Manipulation, Malware Research Tools and Penetration Testing.
“We are extremely proud of our research team for being selected to deliver three presentations at Black Hat,” said Neal Creighton, GoSecure CEO. “Our security research teams are tireless in identifying the latest attacks and cyberthreat trends, and we’re excited for them to share their findings with the cybersecurity community.”
Behind the Scenes: The Industry of Social Media Manipulation Driven by Malware
Location: South Seas ABE
Date: Wednesday, August 7 | 11:15 am-12:05 pm
Olivier Bilodeau, Director of Cybersecurity Research, and Masarah Paquet-Clouston, Security Researcher at GoSecure will discuss their four-year-long investigation that started with analyzing an IoT botnet and led to discovering the structured industry that exists behind social media manipulation (SMM). SMM is the deliberate act of paying for popularity with followers or activity on social media. From traffic fingerprinting to panel clustering and forum inquiries, the presenters will uncover the whole supply chain: malware suppliers, bulk resellers, panel software providers and hucksters. Different approaches to disrupt social media manipulation will also be discussed, giving practical insights for cybersecurity professionals, law enforcement agencies, and policymakers willing to curb this illicit industry.
Location: Business Hall (Oceanside), Arsenal Station 2
Date: Thursday, August 8 | 10:00 am-11:20 am
For security researchers, building analysis machines is a tedious task with little automation. Olivier Bilodeau, Director of Cybersecurity Research, will demonstrate Malboxes, a tool that streamlines and simplifies the creation and management of virtual machines used for malware analysis. Attendees will learn a simple tool for safe malware analysis practice that is easy to grasp, enabling them to start doing analysis faster. Seasoned malware researchers will also gain from this demo by seeing how the DevOps approach can be applied to simplify and accelerate their labs’ malware reverse-engineering capacity or reduce its management overhead.
PyRDP: Python 3 Remote Desktop Protocol Man-in-the-Middle (MITM) and Library
Location: Business Hall (Oceanside), Arsenal Station 4
Date: Thursday, August 8 | 11:30am-12:50pm
Francis Labelle and Emilio Gonzalez, members of the GoSecure research and development team, will demonstrate PyRDP, an RDP man-in-the-middle tool that has applications in pentesting and malware research. On the pentesting side, the demo will showcase features that allow attackers to compromise RDP sessions when combined with TCP man-in-the-middle solutions. On the malware research side, PyRDP can be used as part of a fully interactive honeypot where it can be placed in front of a Windows RDP server to intercept malicious sessions. The team will present various capabilities of the tool that helps accelerate malware analysis for security researchers.
GoSecure is recognized as a leader and innovator in cybersecurity solutions. The company is the first and only to integrate an Endpoint and Network threat detection platform, Managed Detection and Response services, and Cloud/SaaS delivery. The CounterTack Platform delivers predictive multi-vector detection, prevention, and response by applying a unique combination of behavioral analysis, memory forensics, machine learning, and reputational techniques to counter the most advanced threats. Our MDR Services are driven by aggressive SLAs for rapid response and active mitigation services that directly touch the customers’ network and endpoints. Together, these capabilities provide the most effective response to the increased sophistication of continuously evolving malware and malicious insiders that target people, processes and systems. With focus on innovation quality, integrity and respect, GoSecure has become the trusted provider of cybersecurity products and services to organizations of all sizes, across all industries globally.