This is the video of the talk titled "Evilgrade, "You Still Have Pending Upgrades?
"" given at Defcon 18
Vulnerabilities are disclosed daily and in the best case new patches are released. Is no new that many application's update process have security weaknesses allowing fake updates injection. The new version of the framework will show how many updates system are still vulnerable to this trivial attack.Francisco Amato
is a researcher and computer security consultant who works in the area of vulnerability Development, blackbox testing, reverse engineering. He runs his own company - [ISR] Infobyte Security Research www.infobytesec.com, from where he published his developments in audit tools and vulnerabilities in products from companies like Novell, IBM, Sun Microsystems, Apple, Microsoft. Founding organizer of ekoparty south america security conference www.ekoparty.org.Federico Kirschabum
is currently the CTO of Infobyte Security Research, company based in Buenos Aires, Argentina. With almost 10 years of experience researching and pentesting networks, he has developed a deep knowledge in the computer security & telecomunications field.
He is one of the founders of the ekoparty security conference, one of the biggest con in Latin America which is held yearly in BA. Besides computing, Federico studied Filmmaking and worked in several productions. In his free time he loves to play competitive paintball and make asados for his friends.
Tags: basics ,
Latest from the SecurityTube Blog:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.