Palestra – Among Viruses, Trojans, and Backdoors: Fighting Malware in 2022 – Marcus Botacin

Título: Among Viruses, Trojans, and Backdoors: Fighting Malware in 2022
Por: Marcus Botacin
Quando: 13 de maio, 14h.
Onde: Online via meet.google.com/yqs-cebs-msy

Resumo: Malicious software (Malware) attacks have been on a rise for many years and multiple approaches have been proposed to counter malware infections. After years of development, what is the current situation? How is malware handled in 2022? In this talk, I present a tour of the current landscape of malware research and present the handling of malware artifacts as a pipeline of individual, distinct steps that are integrated by a greater view of the malware problem. I discuss research challenges and opportunities in each pipeline step, including (i) the use of big data and machine learning for threat triaging; (ii) A dive into OS internals and code constructions to build more transparent malware tracers; (iii) the role of human context and culture in the development of threat intelligence; and (iv) the deployment of hardware accelerators to build the next-generation of Antivirus (AV) engines. I conclude the talk with a dive into the most updated trend in malware research: machine learning defenses and attacks to machine learning-based detectors.

Bio: Marcus is a Ph.D. in Computer Science (2021) from the Federal University of Paraná (UFPR, Brazil) and a Master in Computer Science (2017) and Computer Engineer (2015) from the University of Campinas (UNICAMP, Brazil). Marcus has been working for the last 10 years in the evaluation of Antivirus (AV) engines, the development of malware analysis sandboxes, and the analysis of Brazilian banking malware, subjects that are reflected in his research agenda. His master’s dissertation was awarded the best Brazilian master’s dissertation in the security field by the Brazilian Computer Society (SBC, 2018). Marcus has presented his research in multiple venues, such as DIMVA and USENIX ENIGMA. Marcus is currently an ad-hoc reviewer for many journals (ACM TOPS and CSUR, IEEE TIFS and TDSC, and others) and a PC member for USENIX Security 2022 and 2023.

Acesso rápido