| Author | Company | Biography | Abstract |
|---|---|---|---|
Mikko Hypponen |
F-Secure | Mikko Hyppönen has been working with computer security for over 20 years and has fought the biggest virus outbreaks in the net. In 2007 he named the infamous Storm Worm and in 2010 he produced classified briefings on the operation of the Stuxnet worm. He is also an inventor for several patents, including US patent 6,577,920 “Computer virus screening”.Mr. Hyppönen has keynoted or spoken at various conferences around the world, including Black Hat, DEF CON, DLD,[9] and RSA. In addition to data security events, Hyppönen has delivered talks at general- interest events, such as TED, TEDx, DLD, SXSW and Google Zeitgeist. He’s also spoken at various military events, including AFCEA events and the NATO CCD COE’s ICCC. He was listed among the “50 most important people on the web by the PC World magazine” and #61 Foreign Policy’s Top 100 Global Thinkers in 2011. He received the virus Bulletin Award as “The Best Educator the Industry”, which is given every ten years. |
Securing Our Future If we want to secure our online future, we only have two problems to solve: Privacy and Security. Our online privacy is being eroded by multinational companies that make billions with our data. Services like Google and Facebook are always exploring new ways to monetize people’s personal data, exposing the fact that many business models and platforms that power digital life operate at the expense of privacy. However, there doesn’t seem to be anything illegal in that, as end users happily accept any cost to get their ‘free’ services. On the other hand, our online security is being targeted by groups that are willing to break the law. This includes both the criminals that do their attacks to make money as well as governments that do it for surveillance and espionage purposes. Where are we really? And what can we do? |
Dennis Batchelder – Session KeyNote |
Microsoft | Dennis Batchelder is the Director of Research for the Microsoft Malware Protection Center (MMPC). Since 2007, Dennis has been leading MMPC’s efforts to help protect billions of customers from malware through real-time antimalware products and services, strong industry partnerships, and continuous analysis of threat intelligence using machine learning and the cloud. Mr. Dennis has worked for more than twenty-five years in the technology industry holding various leadership roles in software development and management in the US and India. A native of New England, he currently lives in Seattle, Washington. Dennis has been a writer for more than a decade and is the author of the Soul Identity series of techno-thriller novels. |
Updating… |
Righard Zwienenberg |
ESET | Mr. Zwienenberg started dealing with computer viruses in 1988 after encountering the first virus problems at the Technical University of Delft. His interest thus kindled, Zwienenberg has studied virus behavior and presented solutions and detection schemes ever since. Initially he started as an independent consultant, in 1991 he co-founded CSE Ltd. where he was the Research and Development Manager. In October 1995, Zwienenberg left CSE and one month later he started at the Research and Development department of ThunderBYTE. In 1998, Norman Data Defense Systems acquired ESaSS and Zwienenberg joined the Norman Development team to work on the scanner engine. In 2005 Zwienenberg took the role of Chief Research Officer at Norman. After AMTSO – Anti Malware Testing Standards Organization – was formed, Zwienenberg was chosen as its president. He is serving as a Vice-President of AVAR and on the Technical Overview Board of the WildList. Zwienenberg left Norman in 2011 looking for new opportunities and started as a Senior Research Fellow at ESET, spol. s r.o. In April 2012 Zwienenberg stepped down as President of AMTSO to take the role as CTO. He also started on Executive Committee of IEEE ICSG. Since April 2015 Zwienenberg returned as President of AMTSO.
He has been a member of CARO since late 1991. He is also vice-president of AVAR. He is a frequent speaker at conferences – among these Virus Bulletin, EICAR, AVAR, RSA, InfoSec, SANS, CFET, ISOI, SANS Security Summits, IP Expo, Government Symposia, SCADA seminars, etc – and general security seminars. His interests are not limited to malicious code but have broadened to include general security issues and encryption technologies over the past years. His hobbies include but are not limited to being a Trekkie, playing the drums, magic and illusions and balloon modelling. |
Industry Cooperation – Do or Don’t, Succeed or Fail?
The Anti-Virus/Anti-Malware Industry has, since the early days, been notable for the cooperation between companies by sharing information, samples and lots more, even to the point of sharing information that in other industries would be jealously guarded as proprietary and intellectual property. This liberal exchange of important information in the interest of the wider community is based, or was, on trust. Over the last three decades, many initiatives have been launched, some successful, others failing. Looking back over a series of both old and more current cooperative initiatives, the pros and cons of each will be highlighted, as well as considering what worked and what didn’t. Finally, we pose a question in the conclusion: is industry cooperation across company boundaries essential to the survival of the industry, and if so, how it should continue? Or should it perhaps be avoided altogether? |
| Thanh Nguyen Founder and Kha Nguyen Member |
VNSecurity |
Nguyen Le Thanh Thanh Nguyen, founder of VNSecurity, is a security researcher with 18+ years of security experience in a wide range of technologies from high scalable, distributed architecture to low level OS development, bios, firmware, chipset and micro-architecture. Currently, he leads the security and IT of a top Internet company in Vietnam. Prior to that, he was a CPU Security Architect at Intel Corporation. Thanh has spoken at several international conferences such as BlackHat, PacSec, DeepSec, HackInTheBox… Nguyen Phi Kha Kha Nguyen is a Product Security Manager at VNG Corporation and a core member of VNSecurity. In free time, he is a hardcore gamer, reverse engineer and game (anti)cheating researcher. |
Targeted Attack Operations Against Internet Industry in Vietnam Vietnam continues to experience a huge increase in the rate of targeted attacks but we rarely see the details of such attacks. At VNSecurity and HoneyNet Project Vietnam, we have been investigating and following some attack operations targeting many leading Telecommunication and Internet organizations in Vietnam over several years. Since those attacks are highly sophisticated and being operated by professional, dedicated hacking groups, most (all) of Vietnam organizations are either not aware of attacks or unable to effectively, accurately detect and prevent them. This presentation will share the details of some attack operations, including attack techniques, lateral movement tools, malware, C&C as well as useful techniques and tools we developed to detect and analyze related malwares. |