The Cyber Menace

January 17, 2023

Log Stealers - Shopping time for Threat Actors!

Francesco Pavanello, Technical Consultant @ Würth Phoenix

Log stealers are a type of malware that steals user credentials from acompromised computer. Criminals deliver stealers through a cracked version of software, causing the user to install them without even realizing it. They can recover usernames and passwords saved in browsers, as well as personal data, cookies, and system information. Logs stolen in this way are then offered for sale in various deep and dark web marketplaces. With our OSINT and CTI platform SATAYO, we monitor any evidence related to our customers to protect and safeguard their business perimeter.

Slides

Breaking the Laws of Robotics: Attacking Industrial Robots

Stefano Zanero, Professor @ Politecnico di Milano

Industrial robots are complex cyber-physical systems used for manufacturing, and a critical component of any modern factory. These robots aren’t just electromechanical devices but include complex embedded controllers, which are often interconnected with other computers in the factory network, safety systems, and to the Internet for remote monitoring and maintenance. In this scenario, industrial routers also play a key role, because they directly expose the robot’s controller. Therefore, the impact of a single, simple vulnerability can grant attackers an easy entry point. The talk will discuss how remote attackers are able to attack such robots up to the point where they can alter the manufactured product, physically damage the robot, steal industry secrets, or injure humans.

Slides