In this presentation, Young will show how a simple Wi-Fi Pineapple hack can be used to abduct, stalk, spy on -- or even physically harm -- unsuspecting victims.
Portland, Oregon (PRWEB) July 28, 2014
Tripwire, Inc., a leading provider of advanced threat, security and compliance solutions, today announced that Craig Young, security researcher for its Vulnerability and Exposure Research Team (VERT), will be presenting new security research at DEF CON 22. The conference will take place August 7-10, 2014, at the Rio All-Suites Hotel and Casino in Las Vegas, Nevada.
Sound, effective data encryption is one of the best solutions to the growing number of privacy and surveillance concerns. However, poorly implemented cryptography can have serious real-world consequences. In this presentation, Young will show how a simple Wi-Fi Pineapple hack can be used to abduct, stalk, spy on -- or even physically harm -- unsuspecting victims.
Session attendees will learn:
- What strategies are necessary to confirm that an SSL-based application performs appropriate certificate validation.
- How to recognize and examine trust manager implementations within a compiled Android application package file.
- Tactics to minimize exposure to the IEEE 802.11 protocol design flaws that enable man-in-the-middle attacks.
Session Title: Pineapple Abductions
Who: Craig Young, security researcher, Tripwire Inc
When: Friday August 8, 6:00 PM PST
Where: DEF CON 22 Wireless Village
Craig Young is an award-winning cybersecurity researcher. He has uncovered multiple router security flaws and Google authentication vulnerabilities and has filed numerous Common Vulnerabilities and Exposures.
For more information about this presentation, please visit:
Tripwire is a leading provider of advanced threat, security and compliance solutions that enable enterprises, service providers and government agencies to confidently detect, prevent and respond to cybersecurity threats. Tripwire solutions are based on high-fidelity asset visibility and deep endpoint intelligence combined with business-context and enable security automation through enterprise integration. Tripwire’s portfolio of enterprise-class security solutions includes configuration and policy management, file integrity monitoring, vulnerability management and log intelligence.