We use cookies on this site. By browsing our site you agree to our use of cookies. Close this message Find out more

Home > Information Security home > Events > ISG Research Seminar 17 December 2013
More in this section Events articles

ISG Research Seminar 17 December 2013

17/12/2013 (10:00-11:00)

Contact: Lorenzo Cavallaro


Speaker: Giovanni Vigna (UC Santa Barbara and LastLine Inc., USA)

Giovanni Vigna is a Professor in the Department of Computer Science at the University of California in Santa Barbara and the CTO of Lastline, Inc. His current research interests include malware analysis, web security, vulnerability assessment, and intrusion detection.  He has been the Program Chair of the International Symposium on Recent Advances in Intrusion Detection (RAID 2003), of the ISOC Symposium on Network and Distributed Systems Security (NDSS 2009), and of the IEEE Symposium on Security and Privacy (S&P 2011).  He is known for organizing and running the world's largest inter-university Capture The Flag hacking contest, called iCTF, that every year involves dozens of institutions around the world.

Title: Malevolution: the evolution of evasive malware


In recent years, malware has evolved by introducing novel techniques to foil analysis and identification. For example, cybercriminals routinely tweak their malicious web content to create new and more effective variants (for example, by incorporating exploits targeting newly-discovered vulnerabilities) or to evade commonly-used defensive tools. In addition, the programs that persist on infected machines are increasingly more stealthy and environment-aware.

In this presentation, we present research on characterizing, tracking, and analyzing the evolution of evasive malware (both in binary form and as web content). We highlight possible approaches for the automated detection of evasions, and we describe our experience in observing evasive malware in a number of real-world deployments.


Comment on this page

Did you find the information you were looking for? Is there a broken link or content that needs updating? Let us know so we can improve the page.

Note: If you need further information or have a question that cannot be satisfied by this page, please call our switchboard on +44 (0)1784 434455.

This window will close when you submit your comment.

Add Your Feedback