Explore a comprehensive analysis of how cloud synchronization services can compromise corporate network security in this Black Hat Europe 2013 conference talk. Delve into the potential risks associated with cloud backup solutions like Dropbox, examining their ability to bypass Data Loss Prevention (DLP) systems and corporate firewalls. Learn about a real-world case study demonstrating how these services can be exploited as malware delivery vectors and command and control channels. Discover the functioning malware tool "DropSmack," designed to leverage Dropbox for data exfiltration. Gain insights into the implications of cloud sync services in corporate environments, detection strategies, and potential security controls. Watch a live demonstration of the tool in action and consider the broader implications for network security in the age of cloud synchronization.
DropSmack - How Cloud Sync Services Render Your Corporate Firewall Worthless
Overview
Syllabus
Introduction
Why Trust Dan
Agenda
Disclaimer
Cloud Sync
Dropbox
Case Study
Standard Methods
Physical Security
Spam
Plan B
Sweet Brown Interview
Where are we
Right this time
What company was it
What we need
DropSmack
How does it work
Long term use
Commands
Deploy
Social Engineering
Exfiltration
Sleep
Detect
Nextgen firewalls
Lansing protocol
Better detection strategies
Demo
Survey Command
Cloud Password
Future Work
Taught by
Black Hat
