An inconvenient Zeus: The rise of Saas targeted malware presented at OWASPAppSecCalifornia 2014

by Ami Luttwak,

Summary : We at Adallom are proposing a session where we will showcase a new variant of Zeus which we have found in the wild that specifically targets Salesforce.com users. It remains dormant until the user logs in to SFDC and then discretely piggybacks on the user session, downloads data, and uploads it to a Dropbox account. We will do a live demonstration of an attack as well as show that Salesforce.com shows no record of the attack, meaning it can execute very clandestinely.