Black Hat USA 2019 Media Alert: SophosLabs Report Deconstructs the Rise and Fall of Baldr Malware

Sophos Press Release

Sophos showcases dark web discoveries, emerging threat research and machine learning innovations at Black Hat USA 2019, BSides Las Vegas and DEF CON 27

LAS VEGAS, NV – Aug. 6, 2019 Sophos (LSE: SOPH), a global leader in network and endpoint security, today unveiled detailed threat research from SophosLabs on Baldr, an information-stealer that first appeared January 2019. The report, Baldr vs the World, provides a deep dive on the popularity of the malware and its unique killchain characteristics. The in-depth research also reveals Baldr’s inner workings, including cybercriminal behaviors and missteps on both the selling and buying side that potentially led to its sudden disappearance from the deep web in June.

Baldr vs The World is the latest in a series of threat research examining evolving attacker techniques that will be showcased at Black Hat USA, DEF CON 27 and BSidesLV taking place this week in Las Vegas. Speaker presentations and live booth sessions will also spotlight machine learning innovation, including an interactive demonstration on hacking facial recognition systems at DEF CON’s AI Village.

Sophos at BSides Las Vegas

Wednesday, Aug. 7, 2019, at 10:00 a.m. PDT
Security Data Science -- Getting the Fundamentals Right
Richard Harang, Sophos director of data science research
The Tuscany, Ground Truth (Firenze)

Sophos at Black Hat USA: Booth #954

Wednesday, Aug. 7 and Thursday, Aug. 8
Sophos threat researchers will be at booth #954 to discuss Baldr research findings and the recent discovery of MegaCortex ransomware; explain the emergence of automated, active attacks and dark web developments; and dispel threat hunting misconceptions.
Mandalay Bay, Shoreline Hall

Sophos at BlackHat

Sophos at DEF CON 27

Friday, Aug. 9, 2019, at 2:45 p.m PDT
Loss is More! Improving Malware Detectors by Learning Additional Tasks
Dr. Ethan Rudd, Sophos senior data scientist
Bally’s, AI Village, Skyview 3

Saturday, Aug. 10, 2019, at 11:30 a.m. PDT
A Tutorial on Hacking Facial Recognition Systems
Richard Harang, Sophos director of data science research, and Dr. Ethan Rudd, Sophos senior data scientist
Bally’s, AI Village, Skyview 3

Saturday, Aug. 10, 2019, at 2:30 p.m. PDT
Modern Debugging^HWarfare with WinDbg Preview
Chris Alladoum, SophosLabs security researcher, and Axel Souchet, computer and security enthusiast
The Flamingo, Lake Mead II (DEF CON Workshop Space)

About Sophos

As a worldwide leader in next-generation cybersecurity, Sophos protects more than 400,000 organizations of all sizes in more than 150 countries from today’s most advanced cyberthreats. Powered by SophosLabs – a global threat intelligence and data science team – Sophos’ cloud-native and AI-powered solutions secure endpoints (laptops, servers and mobile devices) and networks against evolving cyberattack techniques, including ransomware, malware, exploits, data exfiltration, active-adversary breaches, phishing, and more. Sophos Central, a cloud-native management platform, integrates Sophos’ entire portfolio of next-generation products, including the Intercept X endpoint solution and the XG next-generation firewall, into a single “synchronized security” system accessible through a set of APIs. Sophos has been driving a transition to next-generation cybersecurity, leveraging advanced capabilities in cloud, machine learning, APIs, automation, managed threat response, and more, to deliver enterprise-grade protection to any size organization. Sophos sells its products and services exclusively through a global channel of more than 47,000 partners and managed service providers (MSPs). Sophos also makes its innovative commercial technologies available to consumers via Sophos Home. The company is headquartered in Oxford, U.K., and is publicly traded on the London Stock Exchange under the symbol “SOPH”. More information is available at www.sophos.com.