ESET, a global leader in the cybersecurity market, will highlight its latest and previously unpublished research during the 2021 RSA Conference which will take place virtually from May 17 to 20.
ESET researchers Jean-Ian Boutin, Zuzana Hromcová and Lukáš Štefanko will provide detailed analysis on Windows XP exploits and Android stalkerware.
Both presentations will take place on the opening day of the conference on May 17. Lukáš Štefanko will address the topic “Security: The Hidden Cost of Android Stalkerware” from 8:20-9:00 pm (Italian time). Stalkerware is used to spy on users by collecting, transmitting, and storing their personal information. ESET Research has discovered serious vulnerabilities in Android stalkerware apps, and their monitoring servers, which could severely impact users if exploited.
“Mobile stalkerware is a popular spyware sold legally on various websites,” explains Lukáš Štefanko, ESET researcher. “Based on ESET telemetry data, the number of stalkerware detections in 2020 increased by 48% compared to 2019. In my talk, I will cover more than 80 different families of Android stalkerware and focus on the security issues and privacy flaws inherent in their code.”
Immediately afterwards Štefanko, Jean-Ian Boutin, and Zuzana Hromcová will take the virtual stage with “Beyond Living-Off-the-Land: Why XP Exploits Still Matter,” from 9:00 to 9:40 pm (ET). Living-Off-the-Land refers to a technique where attackers use legitimate, pre-installed tools to carry out their malicious operations. “This presentation will introduce the evolution of this technique and explain how vulnerable codes can be exploited to replace well-known and well-mapped living-off-the-land codes,” adds Zuzana Hromcová, researcher at ESET. "A vulnerable Windows XP DLL can turn incident response into a nightmare, even on non-XP PCs. We recommend following our guidelines to help fortify your defenses against this emerging trend." conclude Jean-Ian Boutin, Head of Threat Research di ESET.
To follow the presentations live, simply register on the website RSA Conference 2021. Consult Agenda of the Conference to register for sessions of possible interest.
For those unable to attend the live event, ESET will release a white paper on Android stalkerware by Lukáš Štefanko during the RSA Conference, which will be published on WeLiveSecurity.
All the latest news can be found by following ESET Research su Twitter.
