BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: Hacking ISPs with Point-to-Pwn Protocol over Etherne
 t (PPPoE)\n   When: Friday\, Aug 12\, 16:00 - 16:45 PDT\n   Where: Caesars
  Forum - Forum 104-105\, 135-136 (Track 1) - [1]Map\n\n   SpeakerBio:Gal Z
 ror \, Vulnerability Research Manager at CyberArk Labs\n   Gal Zror (@wave
 burst) acts as the vulnerability research manager in\n   CyberArk labs. Ga
 l has over 12 years of experience in vulnerability\n   research and he spe
 cializes in embedded systems and protocols. Besides\n   research\, he is a
 lso an amateur boxer and a tiki culture enthusiastic.\n   Twitter: [2]@wav
 eburst\n\n   Description:\n   Hello\, my name is BWL-X8620\, and I'm a SOH
 O router. For many years my\n   fellow SOHO routers and I were victims of 
 endless abuse by hackers.\n   Default credentials\, command injections\, f
 ile uploading - you name it.\n   And it is all just because we're WAN-faci
 ng devices. Just because our\n   ISP leaves our web server internet-facing
  makes hackers think it's\n   okay to attack and make us zombies. But toda
 y\, I say NO MORE!\n\n   In this talk\, I will show that if a web client c
 an attack a web\n   server\, then an ISP client can attack the ISP servers
 ! I will reveal a\n   hidden attack surface and vulnerabilities in popular
  network equipment\n   used by ISPs worldwide to connect end-users to the 
 internet. BRAS\n   devices are not that different from us SOHO routers. No
  one is\n   infallible. But\, BRAS devices can support up to 256\,000 subs
 cribers\,\n   and exploiting them can cause a ruckus. Code executing can l
 ead to a\n   total ISP compromise\, mass client DNS poisoning\, end-points
  RCE\, and\n   more!\n\n   This talk will present a high severity logical 
 DOS vulnerability in a\n   telecommunications vendor implementation of PPP
 oE and a critical RCE\n   vulnerability in PPP. That means we\, the SOHO r
 outers\, can attack and\n   execute code on the ISP's that connect us to t
 he internet!\n\n   Today we are fighting back!\n\n   '\n\n   1. https://de
 fcon.outel.org/consolidated_page.html#CaesarsForumBR\n   2. https://twitte
 r.com/waveburst\n\n\n
DTEND:20220812T234500Z
DTSTART:20220812T230000Z
LOCATION:DC - Caesars Forum - Forum 104-105\, 135-136 (Track 1)
SUMMARY:Hacking ISPs with Point-to-Pwn Protocol over Ethernet (PPPoE)
END:VEVENT
END:VCALENDAR