Rob Caldwell of FireEye provided the first technical briefing of the ICS malware known as IronGate at S4xEurope on 9 June 2016.
Here are some highlights of the video:
3:56 Why IRONGATE is interesting from a technical perspective.
6:08 Is the industry numb to this type of release due to naming, hype, process?
8:20 A flow chart showing the major steps of IRONGATE.
14:20 The actual DLL replacement code.
16:20 Record and replay code.
19:25 Comparison and contrast with Stuxnet.
The last ten minutes is Q&A.