--(BUSINESS WIRE)--SentinelOne:
|
WHO: |
Pedro Vilaça is a recognized security researcher with SentinelOne, a provider of next generation endpoint protection products. He is the author of the respected blog “Reverse Engineering Mac OS X: https://reverse.put.as. Pedro is an expert in reverse engineering malware and rootkits to improve security for Mac OS X and Apple iOS. |
|||||
|
WHAT: |
Pedro Vilaça recently disclosed an Apple EFI firmware zero day that lets remote attackers compromise the Extensible Firmware Interface (EFI) on Mac computers and install rootkits. Firmware-level malware is not detected by most virus scanners, anti-malware products and forensics tools. In a session entitled, “Is There an EFI Monster Inside Your Apple?”, he will present research findings that include: |
|
||||
|
-- An overview of the Extensible Firmware Interface (EFI) and how hackers and government agencies can exploit its flaws to install rootkits that bypass full-disk encryption, remain undetected for long periods of time and persist across OS reinstalls |
||||||
| -- How to reverse EFI binaries and search for EFI rootkits, and increase security in OS X | ||||||
|
-- Best practices for defending the enterprise from stealth EFI attacks |
||||||
|
WHERE: |
SyScan360, Beijing Marriott Hotel Northeast, 26A Xiaoyun Road, Chaoyang District, Beijing, China 100125 | |||||
|
WHEN: |
Wednesday, October 21, 2015 from 10:50 am – 11:40 am | |||||
|
HOW: |
To schedule a conversation with Pedro Vilaça, please contact Marc Gendron at marc@mgpr.net or 781-237-0341. |
|||||
About SyScan360
Following BlackHat and DEFCON in Las Vegas, the security industry shifts to Asia with SyScan360 in Beijing, China on October 21-22. SyScan, also known as the Symposium on Security for Asia Network, has successfully hosted over 20 symposiums since 2004. The conference joined partnership with Qihoo 360 and debuted in Beijing in 2012 as SyScan360, and has been recognized as one of the most important security events in Asia. It is a highly technical, non-commercial conference that attracts world-renowned security experts who share their research and discoveries. For more information, visit https://www.syscan360.org/en/index/ or follow on Twitter @SyScan360.
About SentinelOne
SentinelOne is transforming endpoint security to protect organizations against advanced, nation state and unknown threats. The company uses Dynamic Execution Inspection to detect and protect devices against targeted, zero day threats in real time. SentinelOne was formed by an elite team of cyber security and defense experts from Intel, McAfee, Checkpoint, IBM and the Israel Defense Forces. The company’s investors include Third Point Ventures, Data Collective, Granite Hill Capital Partners, Tiger Global Management and The Westly Group. To learn more visit sentinelone.com or follow us at @SentinelSec.
