Save the date for RSAC 2023: April 24-27
Available On Demand
Thursday, Jun. 9, 2022
9:40 AM - 10:30 AM PT
Moscone West 3009
Microsoft uncovered critical RCE vulnerabilities covering 25+ CVEs across a range of IoT devices, from consumer, medical, and IIoT to industrial control systems (ICS). Dubbed “BadAlloc,” the vulnerabilities were found in 20+ widely-used SDKs and RTOSs like VxWorks. This session will describe how they were found, demonstrate how adversaries can leverage them, and give recommended mitigations.
Watch On Demand
Log in to your event account now to view slides, downloads and on demand videos. Not yet registered for RSAC 2022? View Passes
Ineligible Pass Type
Your pass type doesn't allow access to this video or resources. If you'd like to upgrade your pass, please call 844-201-6567 (toll free US) or +1 781-222-0051 (outside the US).
Session Video
Hackers & Threats Technology Infrastructure & Operations
application security Internet of Things zero day vulnerability Malware operational technology (OT Security)
Session Code
SAT-R02
Topic/Track
Securing All the Things
Type/Format
Track Session
Classification
Advanced - Technical
Pass Requirements
- Full Conference
- Press
- College Day
- Digital Pass
- Speaker
Share With Your Community