Malware: Then, Now and How

Security BSides Springfield, 2017 (Drury University, Springfield, MO)- Talk 1.4 - Cody J. Winkler - Malware: Then, Now and How - Follow along with the talk by downloading the slides at this direct link https://drive.google.com/uc?export=download&id=1tQACWJTeE7deow4hTwOaPsbwS-kZhW2r or at https://drive.google.com/open?id=1tQACWJTeE7deow4hTwOaPsbwS-kZhW2r Download the video in 480p at https://drive.google.com/open?id=1EbPrtLbrHk-wkOnCSHLwe9Bc6X0ozc68 Link to slides, download video and podcast versions of this and all BSides Springfield talks: drive.google.com/open?id=0BxW... The podcast versions of most of the talks are at https://soundcloud.com/securitybsides/sets/bsides-springfield-2017, and this one may also be there shortly for streaming and download (you can use the Drive link above, instead just as well) Music featured at the end and begining "Over your cities grass will grow" by Ötone (Pablo Diserens), from the label YGAM @ygam Used with permission from YGAM and the artist. Learn more about the artists and download the songs for free at soundcloud.com/ygam/sets/otone-past-structures-present-matter-ep-ygm003-1 or at the bandcamp pages linked on Soundcloud. All other audio is from the conference or the VOC team. Official Links: @BSidesSpfd www.securitybsides.com/w/page/116970567/BSidesSpfd VOC angels: @ablythe twitter.com/ablythe @cherokeejb_ twitter.com/cherokeejb_ Follow cherokeejb.blogspot.com/ for more video and audio from Springfield, as well as upcoming dfir, security operations, and forensics posts. other volunteers included (thanks!) Beth Young Shannon McMurtrey Lorne Hazlewood Steve McIntosh Matt Stephenson Ryan Halstead Sponsors (also, a big thanks!) with special thanks to augustalocksports.org/ * @pickaugusta *Jack Henry & Associates, Inc. * Drury University * Revolutionary Seurity * Forcepoint by Raytheon * O'Reilly Media *Splunk *Motta Network Experts, Inc. *No Starch Press *IBM Other presenters: @armycyberinstitute @amaughan @c2thewinkler @securithid @sysopfb @motta_mike mnex.biz @westongeorge @sysopfb - From Cody J. Winkler: The goal of this presentation is to provide a 10-year snapshot of malware to the audience. What did the threat landscape look like 10 years ago vs. what does it look like today, and why is malware still such a huge problem? Malware is still a major security threat to end-users like it was in 2007, but with the added scope of how it can impact entire industries today. Through technical analysis of two major outbreaks within the last year, Mirai and WannaCry (for the sake of time constraints, I could do one or the other, I don’t have to do both), I hope to show the audience that 10-year evolution, a better understanding of what malware can actually do, and a basic understanding of the analytic process (techniques, tactics, and procedures).