Guangyuan Zhao
Last known affiliation: NSFOCUS
Guangyuan Zhao 🗣 | Tiejun Wu 🗣
Abstract (click to view)
When the COVID-19 virus is spreading in China, people take the initiative to isolate themselves at home to fight the virus. Internet application traffic has soared, and most people pass their time through apps such as Tiktok. The attackers targeted the home gateway, used 0day to attack more than 3 million home gateway IoT devices, and used HTTP hijacking to insert advertising pages when users browsed the web. This topic will briefly introduce the principle of the vulnerability, focus on the malware used by the attackers and their functions, and reproduce the techniques used by the attackers to insert advertisements in web pages.
Guangyuan Zhao 🗣 | Tiejun Wu 🗣
Abstract (click to view)
WebAssembly(WASM) is a new technology designed for browers. It aims to define a portable, size- and load-time-efficient binary format to serve as a compilation target which can be compiled to execute at native speed by taking advantage of common hardware capabilities available on a wide range of platforms, including mobile and IoT.
Our presentation will cover a brief introduction of this technology, analysis with or without access to the source code. It will also cover security issues and how it can be used by a botnet.