2023-10-14, 13:30–13:50, Workshops & Speed
We'll be taking a look into the history and technical evolution of wiper malware, starting from Shamoon all the way to the modern-day wipers found in the Russia-Ukraine conflict.
There's several topics we'll cover:
In the first section, we'll talk about what wipers are and how they are defined in academic literature as well as security news reporting. We'll establish what the general motive of a wiper attack is, what threat actors tend to use wipers, and what the typical patterns are in terms of tactics and techniques.
In the second section, we'll discuss the chronological history of wipers and use it to frame how wiper malware has evolved over time. The central focus of this to highlight the commonalities and recurring themes through history even as the technical sophistication can grow.
Finally, we'll discuss some of the various types of wiper malware identified in the modern-day, particularly the wiper attacks on Ukraine.
Throughout the talk, we'll be citing several different sources from academic and industry research. My hope is that this talk can provide a helpful jumpstart for those who are interested to dive deeper, but the presentation itself should provide a helpful summary of what we know about wipers today.