Apache Big Data Europe 2016

Developers are a possible attack vector for targeted attacks to infiltrate malicious code

into enterprises.



The Speaker did a network traffic analysis with the Bro Network Security Monitor (bro.org)

backed by an ELK Stack while compiling Apache Bigtop, a Big Data Distribution containing

Apache Hadoop, Spark, HBase, Hive, Flink et al.



While there are no obvious traces of a malicious code within the traffic, there are many

findings of possible attack vectors like unsecurely configured critical software infrastructure

servers, usage of private repositories or unsecure protocols.



The Analysis showed that many compile jobs are downloading and running executables from untrusted sources.

The author will shortly explain how these weaknesses can be exploited and will give recommendations on how to resolve these issues.