Adam Schaal

Adam Schaal is an Application Security manager at a large online retailer with an extensive background in both development and application security. He has experienced both sides of making and breaking applications. Adam enjoys contributing to information security projects such as the CTF platform redctf and the malicious cable implant O.MG-Cable. He is also very active in his local security community as a founder of Kernelcon, a mid-size information security conference, and DEF CON 402.


Session

08-16
17:00
45min
Our Time in a Product Review Cabal: And the malware and backdoors that came with it.
Adam Schaal, Matt Virus

What did you do during the pandemic? We started a Product Review Cabal. Follow our journey from getting a postcard in a product box to us exhausting all of our many online retailer sock accounts. We’ll teach you how we got free packages nearly every day… but there’s a catch. Most of the products arrive with malware, backdoors, or glaring vulnerabilities.

In our talk, we plan to detail a subset of these vulnerable products, how to detect issues, and how to mitigate them. From cameras to light switches, from routers to vacuum cleaners, the product list is expansive. There’s nothing these vendors won’t copy, and nothing they won’t offer up for reviews. The story is a good conversation starter, but be sure to stay for the tear-down and technical analysis. A blend of social engineering, hardware hackery, and software vulnerabilities - this discussion has something for everyone!

Milliways
Milliways