Explore a proof-of-concept attack against Virtual Desktop Infrastructure (VDI) solutions in this 27-minute Black Hat conference talk. Examine the architecture of VDI platforms and learn how a malicious app can leverage screen scraping techniques to exfiltrate data, bypassing both client-side and server-side malware detection measures. Discover how this attack simulates user interaction to automate the espionage process, potentially rendering VDI solutions ineffective for secure BYOD environments. Gain insights into the limitations of VDI security and understand the implications for organizations relying on these platforms for data protection.
Overview
Syllabus
A Practical Attack Against VDI Solutions
Taught by
Black Hat