This Meetup is past

17 people went

Location image of event venue


Paul English & Lee Fisher of PreOS Security will talk about firmware security.

For attackers, platform firmware is the new Software. Most systems include hundreds of firmwares - UEFI or BIOS, PCIe expansion ROMs, USB controller drivers, storage controller host and disk/SSD drivers. Firmware-level hosted malware, bare-metal or virtualized, is nearly invisible to normal security detection tools, has full control of your system, and can often continue running even when the system is "powered off". Security Firms (eg, "Hacking Team" sell UEFI 0days to the highest bidder), and government agencies include firmware-level malware (eg, Wikileak'ed Vault7 CIA EFI malware). Defenders need to catch-up, and learn to defend their systems against firmware-level malware. In this presentation, we'll cover the NIST SP (147,147b,155,193) secure firmware guidance. We'll discuss the problem of firmware-level malware, including some of the latest vulnerabilities such as Intel AMT, Intel ME and even a bit on Meltdown and Spectre. We'll cover some open source tools (FlashROM, CHIPSEC, etc.) to help detect malware on your system. You'll also get a nice paper tri-fold copy of our CHIPSEC Quick Reference for Sysadmins and some scary looking BadBIOS stickers for your laptop, as well as a copy of our upcoming e-book.

Food will be provided, courtesy of Fuzzy Logic.