Black Hat USA 2019 Media Alert: SophosLabs Report Deconstructs the Rise and Fall of Baldr Malware

Sophos showcases dark web discoveries, emerging threat research and machine learning innovations at Black Hat USA 2019, BSides Las Vegas and DEF CON 27

Sophos (LSE: SOPH), a global leader in network and endpoint security, today unveiled detailed threat research from SophosLabs on Baldr, an information-stealer that first appeared January 2019. The report, Baldr vs the World, provides a deep dive on the popularity of the malware and its unique killchain characteristics. The in-depth research also reveals Baldr’s inner workings, including cybercriminal behaviors and missteps on both the selling and buying side that potentially led to its sudden disappearance from the deep web in June.

Baldr vs The World is the latest in a series of threat research examining evolving attacker techniques that will be showcased at Black Hat USA, DEF CON 27 and BSidesLV taking place this week in Las Vegas. Speaker presentations and live booth sessions will also spotlight machine learning innovation, including an interactive demonstration on hacking facial recognition systems at DEF CON’s AI Village.

Sophos at BSides Las Vegas

Wednesday, Aug. 7, 2019, at 10:00 a.m. PDT
Security Data Science -- Getting the Fundamentals Right
Richard Harang, Sophos director of data science research
The Tuscany, Ground Truth (Firenze)

Sophos at Black Hat USA: Booth #954

Wednesday, Aug. 7 and Thursday, Aug. 8
Sophos threat researchers will be at booth #954 to discuss Baldr research findings and the recent discovery of MegaCortex ransomware; explain the emergence of automated, active attacks and dark web developments; and dispel threat hunting misconceptions.
Mandalay Bay, Shoreline Hall

Sophos at DEF CON 27

Friday, Aug. 9, 2019, at 2:45 p.m PDT
Loss is More! Improving Malware Detectors by Learning Additional Tasks
Dr. Ethan Rudd, Sophos senior data scientist
Bally’s, AI Village, Skyview 3

Saturday, Aug. 10, 2019, at 11:30 a.m. PDT
A Tutorial on Hacking Facial Recognition Systems
Richard Harang, Sophos director of data science research, and Dr. Ethan Rudd, Sophos senior data scientist
Bally’s, AI Village, Skyview 3

Saturday, Aug. 10, 2019, at 2:30 p.m. PDT
Modern Debugging^HWarfare with WinDbg Preview
Chris Alladoum, SophosLabs security researcher, and Axel Souchet, computer and security enthusiast
The Flamingo, Lake Mead II (DEF CON Workshop Space)

About Sophos

Sophos is a cybersecurity leader defending 600,000 organizations globally with an AI-driven platform and expert-led services. Sophos meets organizations wherever they are in their security maturity and grows with them to defeat cyberattacks. Its solutions combine machine learning, automation, and real-time threat intelligence with frontline human expertise from Sophos X-Ops to deliver advanced, 24/7 threat monitoring, detection, and response.

Sophos offers industry-leading managed detection and response (MDR) alongside a comprehensive portfolio of cybersecurity technologies — including endpoint, network, email, and cloud security, extended detection and response (XDR), identity threat detection and response (ITDR), and next-gen SIEM. Together with expert advisory services, these capabilities help organizations proactively reduce risk and respond faster, with the visibility and scalability needed to stay ahead of evolving threats.

Sophos goes to market with a global partner ecosystem, including Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs), resellers and distributors, marketplace integrations, and cyber risk partners, giving organizations the flexibility to choose trusted relationships when securing their business. Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com.