Explore grid computing attacks on streaming services in this 25-minute conference talk from the Hack In The Box Security Conference. Dive into research on client-side vulnerabilities in grid computing software used by popular Korean live streaming platforms. Learn about 13 discovered vulnerabilities across three major platforms, including screen tampering, unauthorized access to private channels, and privilege escalation. Understand the security implications of grid computing in live streaming, where clients relay video data to reduce server load. Examine five common attack surfaces, structural differences, and resulting vulnerabilities. Discover how these attacks can impact large numbers of viewers simultaneously due to the nature of grid computing. Gain insights into the researchers' analysis methodology, attack demonstrations, and the broader security risks for streaming platforms using this technology.
Overview
Syllabus
#HITB2021AMS D1T1 - Grid Computing Attacks On Streaming Services - Yoon, Myeong, Hwang, Yun & Kim
Taught by
Hack In The Box Security Conference
Related Courses
-
The Rise of Potatoes - Privilege Escalation in Windows Services
-
Real World Attacks Against Secure Elements
-
Pwning Centrally-Controlled Smart Homes
-
Walk Through Access Control Systems
-
Attacks are Forwarded - Breaking the Isolation of MicroVM-based Containers Through Operation Forwarding
-
SAP RCE - The Agent Who Spoke Too Much
