BRATISLAVA – ESET will highlight its latest and as yet unpublished research during the RSA Conference 2021 taking place virtually during May 17-20. ESET researchers Jean-Ian Boutin, Zuzana Hromcová and Lukáš Štefanko will provide a deep dive into Windows XP exploits and Android stalkerware.
Both presentations will take place on the opening day of the conference on May 17. ESET researcher Lukáš Štefanko will address “Security: The Hidden Cost of Android Stalkerware” from 11:20 to 12:00 PDT (20:20 to 21:00 CEST). Stalkerware is used to spy on users by gathering, transmitting, and storing their personally identifiable information. ESET Research has discovered serious vulnerabilities in Android stalkerware apps, and their monitoring servers, that could result in serious user impact if exploited.
“Mobile stalkerware is a popular threat sold legally on various websites,” explains Štefanko. “Based on ESET telemetry, the number of detections of stalkerware in 2020 rose by 48% compared to 2019. I will cover more than 80 different families of Android stalkerware and focus on security issues and privacy flaws in their code.”
Immediately following Štefanko, Head of Threat Research at ESET Jean-Ian Boutin and ESET researcher Zuzana Hromcová will take the virtual stage with “Beyond Living-Off-the-Land: Why XP Exploits Still Matter” from 12:05 to 12:45 PDT (21:00 to 21:40 CEST). Living-Off-the-Land refers to a technique where attackers use legitimate, preinstalled tools to carry out their malicious operations.
“This presentation will introduce evolution of this technique and explain how vulnerable binaries can be leveraged to replace the well-known and well-mapped living-off-the-land binaries”, says Hromcová.
“A vulnerable Windows XP DLL can quickly turn incident response into a nightmare, even on non-XP machines. Learn from ESET’s experience and leverage our guidance to fortify your defenses against this emerging trend,” adds Boutin.
However, if you cannot join the event live, ESET will release a white paper during the RSA Conference on Android stalkerware by Lukáš Štefanko. Check out WeLiveSecurity where the piece will be published. Make sure to follow ESET Research on Twitter for the latest news from ESET Research.
About Version 2 Limited
Version 2 Limited is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 Limited offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.