Room 3 

17:40 - 18:40 


Talk (60 min)

The Hidden Risk in Undocumented API Behavior

Documentation completeness, or rather the lack of it, can be detrimental. This session will delve into one example illustrating how more than 15 AV and EDR vendors have overlooked undocumented risk in a group of Win32 API functions, exposing them to an attack in which malicious actors could disable their protection or gain additional privileges on the system. The talk will also discuss lessons learned.

Application Security

Bahaa Naamneh

With over 15 years of experience at the forefront of cybersecurity innovation, Bahaa Naamneh is a seasoned expert in the field. Prior to his current role at Crosspoint Labs, where he provides technical perspective to Crosspoint Capital's investment team and portfolio companies, Bahaa worked for companies like Symantec, NortonLifeLock, Blue Coat, and SafeNet. His expertise extends to threat protection technologies, as he led the efforts on developing several kernel drivers in anti-malware products. Additionally, Bahaa is a prolific inventor, having authored and co-authored numerous patents in the cybersecurity domain.