contact us

Sean Dillon will Expand on his DEF CON Talk with Full Report on his Research into the Source of WannaCry and NotPetya Ransonware Pandemics

SUNNYVALE , Calif. – Sep. 26, 2018 – RiskSense®, Inc., pioneering risk-based vulnerability prioritization and management, today announced that senior security analyst and Windows kernel expert Sean Dillon will present a deep dive session on the high-profile NSA ETERNAL exploits at DerbyCon 8.0 in Louisville, Kentucky.

WHO: Sean Dillon (aka @zerosum0x0), senior security analyst at RiskSense, has years of experience in penetration testing, exploit reverse engineering and malware research especially around the Microsoft Windows kernel. Sean is a co-author of the ETERNALBLUE and other MS17-010 Metasploit exploit modules. He was the first to publish a reverse engineering analysis of the DOUBLEPULSAR SMB backdoor. Sean has taught workshops on Windows internals at DEF CON and to government agencies.

WHAT: At DEF CON 26, Sean presented preliminary findings from his reverse engineering of the Windows ETERNAL exploits and remote code execution vulnerabilities in the Microsoft Windows platform used to carry out the global WannaCry, NotPetya and Olympic Destroyer attacks. In this DerbyCon presentation, Sean will reveal his complete report from reverse engineering the mechanisms behind these exploits, including internal structures and background details on the exploit chains used by ETERNALBLUE, ETERNALCHAMPION, ETERNALROMANCE, and ETERNALSYNERGY. Sean will also recommend best practices for protecting Windows systems from future attacks that use these exploits.

WHEN: Friday, October 5, 2018, 2:00-2:50 PM EDT in Track 2

WHERE: DerbyCon 8.0, Marriott Louisville, 280 West Jefferson, Louisville, Kentucky 40202

HOW: To schedule a conversation with Sean Dillon, contact Marc Gendron at or +1 781.237.0341. For more information, visit:

RiskSense Logo

RiskSense®, Inc. provides vulnerability management and remediation prioritization to measure and control cybersecurity risk. The cloud-based RiskSense platform delivers Risk-Based Vulnerability Management, Application Security Orchestration and Correlation, in addition to our Vulnerability Knowledge Base.These products bring insight to the wide views of vulnerability risk with adversarial threat-context and ties to ransomware. With Vulnerability Risk Rating, threat analytics, and automated playbooks prioritize actions for critical security weaknesses dramatically improving security and IT efficiency and effectiveness of managing attack surface risk.

Contact us at

+1 505-217-9422

Follow Risksense on LinkedIn Follow Risksense on Twitter

© 2021 RiskSense, Inc. All rights reserved.
Legal Notices, Privacy Policy, and Customer Agreements | Site Map