Tech Talk Series: Rogue Device Attacks & Mitigation
Events
Tech Talk Series: Rogue Device Attacks & Mitigation
Date: January 15, 2020 | 10 - 12pm | Location: DreamPort Facility in Columbia MD
Abstract
The CIS (Center for Internet Security) Critical Controls, prioritize the visibility of hardware assets as a critical cyber control. The lack of available and efficient security solutions for mitigating rogue hardware devices is leveraged by bad actors and is being used to steal information, manipulate data and interruption of the normal operation of critical infrastructure. Like everything else in Security, it starts with gaining a full visibility but the commonly used discovery methods, mostly based on mapping network addresses, IP addresses and other logical entities, such as protocols and applications, lack in their ability to discovery "transparent" hardware devices, hidden rogue implants and man-in-the-middle attack (MITM) tools. WHY? Because these attack tools have no address and do not generate noticeable logical data. In the session, we will cover the attack deliver methods, attack scenarios, weaknesses of commonly used security tools and ways to mitigate the threat.
About Yossi Appleboum
Yossi Appleboum is CEO, Sepio Systems, Inc. Yossi brings 28 years' experience in security, networking, and computer science and control systems, along with a wide-angle perspective to cyber security threats and unique security solutions. In the early 1990s, Yossi joined the technology unit of the Israeli Intelligence Community. As team leader and chief architect, he focused on design and development of critical infrastructure network monitoring and security systems. In 1998, Yossi co-founded WebSilicon, a company dedicated to delivering advanced networking and security systems. As VP of research and development, Yossi was involved in the design and implementation of numerous systems for government agencies, integrators and vendors worldwide. In 2007, Yossi became the company's CTO, responsible for North American business activities. In this role, he worked with key customers to develop next-generation network monitoring and security systems. In 2013, WebSilicon was acquired by Magal (NASDAQ: MAGS), one of the world's largest physical security integration companies. After the acquisition, Yossi led the integration of the company into Magal and was instrumental in rebranding WebSilicon as CyberSeal. Yossi served as CTO for cyber security of Senstar, the North American division of Magal, and relocated to the United States to work closely with key customers and partners. As CTO, Yossi was involved in all phases of development of the Tungsten Cyber Security Appliance and the Rubidium Central Monitoring Systems. These solutions converge physical and logical security and introduced a higher echelon of cyber security to the market. As CEO, Yossi Appleboum is responsible for the operations at the North and Latin America.