BlackBerry launches free tool for reverse engineering to fight cybersecurity attacks

blackberry-launches-free-tool-for-reverse-engineering-to-fight-cybersecurity-attacks

One of the first announcements at BlackHat USA 2020 is an open-source tool to fight malware that BlackBerry first used internally and is now making available to everyone.

Image: iStockphoto/solarseven

At BlackHat USA 2020, BlackBerry announced on Monday that its open-source internal tool PE Tree is now available for all security professionals to use for reverse engineering malware. 

This tool allows reverse engineers to view Portable Executable (PE) files in a tree view using pefile and PyQt5. This makes it easier to dump and reconstruct malware from memory while providing an open-source PE viewer code-base. The tool integrates with Hex-Rays’ IDA Pro decompiler to allow for easy navigation of PE structures, as well as dumping in-memory PE files and performing import reconstruction. 

SEE: SSL Certificate Best Practices Policy (TechRepublic Premium)

PE Tree was developed in Python and supports the Windows, Linux, and Mac operating systems. It can be installed and run as a standalone application or an IDAPython plugin, allowing users to examine any executable Windows file and see what its composition is. 

Eric Milam, vice president of research operations for BlackBerry, said in a press release, “As cybercriminals up their game, the cybersecurity community needs new tools in their arsenal to defend and protect organizations and people. We’ve created this solution to help the cybersecurity community in this fight, where there are now more than one billion pieces of malware with that number continuing to grow by upwards of 100 million pieces each year.”

Reverse engineers use several tools to deconstruct malware, including disassemblers, debuggers, PE viewers, and network analyzers.  

Later this week at  Black Hat USA 2020, Kevin Livelli, BlackBerry’s director of threat intelligence, will be presenting on Decade of the RATs on August 5 at 11-11: 40 am PT. BlackBerry will also be presenting a sponsored webinar about its partnership with Intel to stop cryptojacking malware, and this session will drill down into BlackBerry Optics AI-based EDR technology for Linux.

Cybersecurity Insider Newsletter

Strengthen your organization’s IT security defenses by keeping abreast of the latest cybersecurity news, solutions, and best practices.
Delivered Tuesdays and Thursdays



Sign up today

Also see

BlackBerry finds another automotive partner in electric vehicle startup Canoo

blackberry-finds-another-automotive-partner-in-electric-vehicle-startup-canoo

The California-based EV company is adding BlackBerry’s QNX operating system to its fleet of membership-based semi-autonomous vehicles.

Image: Canoo

BlackBerry is moving further into the automotive space with its latest announcement of a partnership with eclectic vehicle startup Canoo.

BlackBerry will be providing its QNX embedded system platform to Canoo to serve as the operating system for its fleet of semi-autonomous electric vehicles, which are due out in 2021.

Canoo is a California-based startup building EVs with a novel goal in mind: Providing a membership-based vehicle rental program that charges a flat rate for a bundle of services, including insurance, vehicle registration, and the Canoo vehicle itself. 

BlackBerry’s role in the partnership involves licensing its QNX technology, along with the QNX OS for Safety 2.0, to Canoo to use as the backbone of its automated driver-assistance systems (ADAS). 

Canoo’s vehicles will be equipped on launch with level 2 autonomous features. “Level 2 features are consistent with partial autonomy, enabling the vehicle to manage acceleration and steering and monitor components of its environment in certain conditions,” BlackBerry said in a press release.

The addition of Canoo to BlackBerry’s automotive client portfolio is the latest in a line of major partnerships the once-dominant smartphone manufacturer has added since its transformation into the world of connected vehicles. Ford, Damon Motorcycles, the Renovo automotive data platform, and other automotive industry integrations have made BlackBerry relevant once again, with analysts saying that the company’s future lies in the success of its QNX platform.

“The world’s leading automakers, their Tier 1 suppliers, chip manufacturers, and innovative startups such as Canoo continue to put their trust in BlackBerry and our ability to provide them with the safety-certified and secure software on which they can build the next generation of cars,” said John Wall, SVP and co-head of BlackBerry Technology Solutions.

SEE: Robotics in the enterprise (free PDF) (TechRepublic)

Canoo’s vehicles are built with seven cameras, five radars, and 12 ultrasonic sensors, and facial monitoring technology that will all use QNX OS to determine when it’s necessary to warn a driver of danger or intervene to take limited control of the vehicle in an emergency. 

QNX OS for Safety has its own development platform to allow BlackBerry customers to modify and build upon the OS as needed to suit their particular needs. It’s ISO 26262 ASIL D and IEC 61508 SIL3 certified, and BlackBerry said it’s precertified microkernel real-time operating system can accelerate development timelines and reduce research and production costs.

“BlackBerry QNX is the industry standard for safety certified software operating systems, so it was a natural choice for us,” said Canoo’s head of propulsion and electronics, Phil Weicker.

Pricing for Canoo rentals is not yet available, but interested parties can sign up for the first wave of Canoos being released exclusively in Los Angeles in 2021.

Innovation Newsletter

Be in the know about smart cities, AI, Internet of Things, VR, AR, robotics, drones, autonomous driving, and more of the coolest tech innovations.
Delivered Wednesdays and Fridays



Sign up today

Also see