Malware Threat Hunting in IoT and IIoT Environments
The ever-increasing connection between public networks and the Industrial Internet of Things (IIoT) that form a significant portion of our critical infrastructure offers new opportunities for cybercriminals and state-sponsored Advanced Persistent Threat (APT) actors. The significant number and diversity of Internet-connected IoT devices that are monitoring and controlling our pipelines, turbines, smart grids, smart transport systems, etc. result in a large and complex attack surface that must be continuously monitored and protected. Exploit-kits, ransomware, and malware are the main tools in the attackers’ arsenal when targeting IIoT networks. This talk starts with discussing why classic cybersecurity defense mechanisms such as patching, password management, etc. are not effective in protecting IoT systems against malicious payloads and why cyber threat hunting is the most effective detection and deterrence strategy. It then presents several state-of-the-art malware and ransomware threat hunting systems and suggests future research directions in the field.
Dr. Jameleddine Hassine is an Associate Professor at the department of Information and Computer Science of King Fahd University of Petroleum and Minerals (KFUPM). Dr. Hassine holds a Ph.D. from the Faculty of Engineering and Computer Science at Concordia University (2008) and a M.Sc. from the School of Information Technology and Engineering (SITE) at the University of Ottawa (2001). Prior to this, he earned a Computer Engineering Diploma from the National School of Computer Science (Tunis, Tunisia) (1997). Dr. Hassine has several years of industrial experience within world wide telecommunication companies: Nortel Networks (2000-2001) and Cisco Systems (2005-2010). His main research interests include requirements engineering (languages and methods), software testing, formal methods, communication protocols, and software maintenance. Dr. Hassine published his research in many high impact journals like Requirements Engineering Journal (REJ), Journal of Systems and Software (JSS), Information and Software Technology (IST), and Software and Systems Modeling (SoSyM).