Overview
Explore grid computing attacks on streaming services in this 25-minute conference talk from the Hack In The Box Security Conference. Dive into research on client-side vulnerabilities in grid computing software used by popular Korean live streaming platforms. Learn about 13 discovered vulnerabilities across three major platforms, including screen tampering, unauthorized access to private channels, and privilege escalation. Understand the security implications of grid computing in live streaming, where clients relay video data to reduce server load. Examine five common attack surfaces, structural differences, and resulting vulnerabilities. Discover how these attacks can impact large numbers of viewers simultaneously due to the nature of grid computing. Gain insights into the researchers' analysis methodology, attack demonstrations, and the broader security risks for streaming platforms using this technology.
Syllabus
#HITB2021AMS D1T1 - Grid Computing Attacks On Streaming Services - Yoon, Myeong, Hwang, Yun & Kim
Taught by
Hack In The Box Security Conference