Overview
Explore a critical vulnerability discovered in popular security products that allows threat actors to bypass Windows protections. Delve into the research that uncovered this issue across multiple Anti-Virus (AV) products and potentially other security and non-security related software. Learn about a second malpractice in intrusive products that further simplifies exploit execution. Discover the coordinated effort with vendors to address and patch these vulnerabilities. Gain insights into the detailed description of the vulnerability and its impact. Receive access to a tool for validating system security against this vulnerability. This 43-minute conference talk from Security BSides San Francisco provides valuable information for cybersecurity professionals and enthusiasts interested in understanding and mitigating potential weaknesses in security software.
Syllabus
BSidesSF 2016 - Abusing Security Products to Bypass Windows Protections (Tomer Bitton, Udi Yavo)
Taught by
Security BSides San Francisco