IOActive’s Cesar Cerrudo to Present at Infiltrate

The Chief Technology Officer of IOActive Labs to present Easy Local Windows Kernel Exploitation

Seattle, Wash—January 11, 2012. IOActive, a leading provider of application security, compliance, and smart grid security services, today announced that Cesar Cerrudo will present Easy Local Windows Kernel Exploitation at Infiltrate 2012 in Miami Beach, Florida. The Infiltrate security conference aims to be the most important security event of the year. Focused on the technical aspects of offensive security, their presentations challenge attendees with deep technical content provided by world-renowned industry researchers.

Cerrudo's presentation will focus on common local kernel vulnerabilities that lack general, multi-version, and reliable exploitation methods. In the past, interesting techniques have been published, but these methods are far from simple and don't work across different versions of Windows. Cerrudo will show a couple of easy, reliable, cross-platform techniques for exploiting common local Windows kernel vulnerabilities that, until now, have been considered difficult or impossible to achieve.

WHAT  Easy Local Windows Kernel Exploitation

WHERE  Gansevoort Hotel, South Beach, CA

WHEN  January 12–13, 2012. Time TBD.

HOW  For more information, visit the Infiltrate website.

About Cesar Cerrudo
Cesar Cerrudo is CTO at IOActive Labs, where he leads the team in performing cutting-edge research in the areas of SCADA, mobile device, and application security—to name a few. Formerly the founder and CEO of Argeniss Consulting—which was acquired by IOActive—Cerrudo is a world-renowned security researcher and specialist in application security.

Throughout his career, Cerrudo has been credited with discovering and helping to eliminate dozens of vulnerabilities in leading applications including Microsoft SQL Server, Oracle Database Server, IBM DB2, Microsoft BizTalk Server, Microsoft Commerce Server, Microsoft Windows, and Yahoo! Messenger. Cerrudo also has authored several white papers on database and application security, and attacks and exploitation techniques. He has been invited to present at such conferences as Black Hat, Bellua, CanSecWest, WebSec, HITB, Microsoft Blue Hat, EkoParty, FRHACK, H2HC, and DefCon. Cerrudo collaborates with and is regularly printed in online publications including eWeek, Computer World, and other leading journals.

About IOActive
Established in 1998, IOActive is an industry leader that offers comprehensive computer security services with specializations in smart grid technologies, software assurance, and compliance. Boasting a well-rounded and diverse clientele, IOActive works with a majority of Global 500 companies including power and utility, hardware, retail, financial, media, aerospace, high-tech, and software development organizations. As a home for highly skilled and experienced professionals, IOActive attracts talented consultants who contribute to the growing body of security knowledge by speaking at such elite conferences as Black Hat, Ruxcon, Defcon, BlueHat, CanSec, and WhatTheHack. For more information, visit www.ioactive.com.

-###-