Conference sessions showcase risks
Many of the sessions at Black Hat USA 2014, a security conference taking place this August, could give nightmares to those concerned with network security or personal privacy. On networkworld.com, Tim Greene highlights 10 of the more disturbing topics that will be explored at the Las Vegas event. These include:
Using Google Glass to snatch passwords
Researchers have created an application that videos victims tapping passwords into touchscreens and analyzes it to steal passwords, reportedly with 90% accuracy from three meters away. The app is not specific to Google Glass, but the wearable device is perfectly suited to surreptitious video recording.
Data theft through virtual desktop infrastructure
In theory, a virtual desktop infrastructure makes BYOD programs safe by centralizing applications and data and limiting end users to presentations of that data. But engineers from Lacoon Mobile Security will demonstrate how to steal data through screen scraping without being detected by malware detection measures.
Stealing data from POS devices
Target was just one of many companies that were victimized by point-of-sale breaches last year. It’s a threat that is not easy to solve, according to Nir Valtman of NCR Retail, who will review both successful and unsuccessful efforts to reduce the risk of memory scraping.
USB stick malware
That innocent little thumb drive could be an evil agent bent on destruction, according to Karsten Nohl and Jakob Lell of SRLabs. The controller chips inside USB sticks can be compromised, enabling malware to take over host machines, steal data, and spy on users. Nohl and Lell’s presentation will include a demo showing a system fully compromised with an undetectable self-replicating virus.
Read more at networkworld.com: