admin

25C3: "Banking Malware 101"

Saturday, December 20. 2008

The 25th Chaos Communication Congress (25C3) will take place next week in Berlin, Germany. CCC is always fun and I'm really looking forward to the Congress. I will give a talk on banking malware at the second day (see the schedule for details). The talk can be summarized as:

In the recent years, we observed a growing sophistication how credentials are stolen from compromised machines: the attackers use sophisticated keyloggers to control the victim's machine and use different techniques to steal the actual credentials. In this talk, we present an overview of this threat and empirical measurement results.

Some aspects of this talk are covered by our recent technical report on banking malware, but I will go into some more technical details. If you also attend CCC, you can find me there and we can discuss questions :)

Posted by Thorsten Holz in admin, malware at 10:42 | Comments (2) | Trackbacks (0)

Old Entries / Honeypot Presentation

Tuesday, December 2. 2008

Getting the old entries back is not as easy as expected :-/ I'm currently busy with my thesis (I hope to finish by the end of the year...) and thus I have not much time to focus on the blog, sorry. But I will start with new blog entries and later on add the old entries once I have a bit more time.

In the meantime: I recently did a lecture on honeypots at the University of Mannheim that provides an introduction to different kinds of honeypots and honeynets. The slides are 5 MB in size and now available in PDF format.

Posted by Thorsten Holz in admin, honeynets at 11:12 | Comments (0) | Trackbacks (0)

Hardware failure

Monday, December 1. 2008

Due to a broken hard disk, this blog was offline for a few days :-(

The system is now up and running again, but it will take some time until everything works as expected. So stay tuned, I hope to fix everything in the next few days.

Posted by Thorsten Holz in admin, honeynets, malware, paper at 16:21 | Comments (2) | Trackback (1)