Peter Zinn

In a talk titled “To Boldly Go!” Peter Zinn, Senior Cybercrime Advisor for the Dutch National High Tech Crime Unit (NHTCU) spoke on his agency’s battles against online crime. Zinn detailed how the NHTCU was able to apprehend the operator of the Bredolab botnet after his girlfriend posted to her Facebook on his laptop and how social media tools like Google Maps and Flickr to hunt down cybercriminals responsible for child pornography and other “victimless” crimes. Looking to grow exponentially in the near future, Zinn claims the NHTCU will double in size this year – from 30 to 60 people.

Fabio Assolini

At one point during his talk on the conference’s second day, Kaspersky Lab researcher Fabio Assolini shows video of criminals affixing card skimming devices in broad daylight, in the presence of other bank customers. Assolini’s talk was on this so-called “Chupacabra malware,” and how the skimmers can “suck” the credit card information of unsuspecting users in parts of Brazil.

Paul Judge

Paul Judge, chief research officer at Barracuda Networks shared results from a five month study the company conducted in which they analyzed over 3,000 fake Facebook profiles.

Boldizar Bencsath

Boldizar Bencsath discussed several recent targeted attacks, including Duqu, an attack he experienced firsthand. Bencsath led a small group of researchers in September 2011 in the Laboratory of Cryptography and System Security (CrSyS) of Budapest University of Technology and Economics, to identify the first strains of Duqu malware.

Brad Arkin

In a keynote on Thursday, Brad Arkin, Adobe’s Senior Director of Product Security and Privacy spoke on driving up the cost of exploits in products like Reader and Flash Player in an attempt to thwart would-be attackers. Fixing every security bug is often impossible, so instead of writing flawless code, Adobe and other vendors have begun actively seeking ways to make it hard on those trying to break their software.

Cancun, Mexico

At Kaspersky Lab’s Security Analyst Summit last week, over 100 researchers and law enforcement officials converged in Cancun, Mexico over the course of five days to network and discuss a veritable cornucopia of security topics. Topics such as privacy, SCADA and PLC security, tracking cybercriminals and the evolution of malware were discussed in depth. Flip through the following slides to see a collection of speaker highlights from SAS 2012.

Mapping it out

In his presentation at S4, doctoral student Eireann Leverett presented his research showing how more than 10,000 Internet acccessible industrial control systems can be found online, including HVAC systems, building management systems, PLCs and other industrial systems. Here, Leverett shows a Google Map displaying the location of vulnerable ICS devices in North America.

More from Basecamp

The Project Basecamp presentation received a rousing response from the audience, many of whom are industrial control security experts who have long warned, quietly, about the woeful state of software security in the industry. But not everyone was enthused. Kevin Hemsley of ICS-CERT questioned Peterson about the decision to go public with the Project’s findings before notifying vendors. Here, Wightman presents his findings at S4.

Ladder logic

The devices tested by the Basecamp Project included the D20 PLC by GE, The Modicon Quantum by Schneider Electric, Rockwell and Koyo Electronics. Each device was tested using a number of additional attack vectors. Researchers attempted to upload custom firmware or so-called “ladder logic” for the device, looked for back door accounts, weak authentication, undocumented features that could be exploited and fuzzed each device for vulnerable services. Here, a grid presents the results of the tests. A green check means the device passed the test.

(Not) making the grade

The researchers working on Project Basecamp found significant security issues with programmable logic controller (PLC) they tested. Some PLCs were too brittle and insecure to even tolerate security scans and probing.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.