Quantcast

Tripwire Security Researcher to Present New Pineapple Wi-Fi Vulnerability at DEF CON 22

July 28, 2014

Presentation will take place Friday August 8, at 6:00 PM PST

Portland, Oregon (PRWEB) July 28, 2014

Tripwire, Inc., a leading provider of advanced threat, security and compliance solutions, today announced that Craig Young, security researcher for its Vulnerability and Exposure Research Team (VERT), will be presenting new security research at DEF CON 22. The conference will take place August 7-10, 2014, at the Rio All-Suites Hotel and Casino in Las Vegas, Nevada.

Sound, effective data encryption is one of the best solutions to the growing number of privacy and surveillance concerns. However, poorly implemented cryptography can have serious real-world consequences. In this presentation, Young will show how a simple Wi-Fi Pineapple hack can be used to abduct, stalk, spy on — or even physically harm — unsuspecting victims.

Session attendees will learn:

  •     What strategies are necessary to confirm that an SSL-based application performs appropriate certificate validation.
  •     How to recognize and examine trust manager implementations within a compiled Android application package file.
  •     Tactics to minimize exposure to the IEEE 802.11 protocol design flaws that enable man-in-the-middle attacks.

Session Title: Pineapple Abductions

Who: Craig Young, security researcher, Tripwire Inc

When: Friday August 8, 6:00 PM PST

Where: DEF CON 22 Wireless Village

Craig Young is an award-winning cybersecurity researcher. He has uncovered multiple router security flaws and Google authentication vulnerabilities and has filed numerous Common Vulnerabilities and Exposures.

For more information about this presentation, please visit:

http://www.tripwire.com/state-of-security/?p=24412.

About Tripwire

Tripwire is a leading provider of advanced threat, security and compliance solutions that enable enterprises, service providers and government agencies to confidently detect, prevent and respond to cybersecurity threats. Tripwire solutions are based on high-fidelity asset visibility and deep endpoint intelligence combined with business-context and enable security automation through enterprise integration. Tripwire’s portfolio of enterprise-class security solutions includes configuration and policy management, file integrity monitoring, vulnerability management and log intelligence.

For the original version on PRWeb visit: http://www.prweb.com/releases/2014/07/prweb12045048.htm


Source: prweb



comments powered by Disqus