honeyblog

25C3: "Banking Malware 101"

Saturday, December 20. 2008

The 25th Chaos Communication Congress (25C3) will take place next week in Berlin, Germany. CCC is always fun and I'm really looking forward to the Congress. I will give a talk on banking malware at the second day (see the schedule for details). The talk can be summarized as:

In the recent years, we observed a growing sophistication how credentials are stolen from compromised machines: the attackers use sophisticated keyloggers to control the victim's machine and use different techniques to steal the actual credentials. In this talk, we present an overview of this threat and empirical measurement results.

Some aspects of this talk are covered by our recent technical report on banking malware, but I will go into some more technical details. If you also attend CCC, you can find me there and we can discuss questions :)

Posted by Thorsten Holz in admin, malware at 10:42 | Comments (2) | Trackbacks (0)

About

This weblog deals with IT-security related stuff and honeypots / honeynets in particular. In addition, the main focus is on malware and bots / botnets.

The blog is maintained by Thorsten Holz (Twitter: @thorstenholz). I work as an assistant professor at Ruhr-University Bochum and am also affiliated with the International Secure Systems Lab. I am one of the founders of the German Honeynet Project and obtained a doctorate from the Laboratory for Dependable Distributed Systems (University of Mannheim) in May 2009. You can reach me at thorsten.holz [at] gmail.com

Together with Niels Provos, I wrote a book on honeypots:

Calendar