Million Browser Botnet--Edge 2014

File uploaded by Michael Smith Employee on Oct 10, 2014
Version 1Show Document
  • View in full screen mode

Million Browser Botnet presentation from Edge 2014.


Online advertising networks can be a web hacker's best friend. For mere pennies per thousand browser impressions, service providers allow you to broadly distribute arbitrary JavaScript. Most advertisers use this feature to show ads, track users, and get clicks, but hackers don't play by the same rules as the rest of us. Absolutely nothing prevents them from spending as little as $10 to create a massive JavaScript-driven browser botnet instantly.  Join us for this presentation as WhiteHat Security Threat Research Center Manager, Matt Johansen and Akamai CSIRT Director Michael Smith show you how easily a bad actor can commandeer browsers to perform DDoS attacks, participate in email spam campaigns, crack hashes, and even help brute-force passwords using just a few lines of HTML5 and JavaScript.