Philippe Lin / @miaoski

Bio

Philippe is a senior threat researcher in Trend Micro Forward-Looking Threat Research team. He is experienced in interdisciplinary works is always excited by the challenge of acquiring new domains of knowledge. He is experienced in writing server-side (Linux) applications and DevOps. He uses rational database (MySQL / MariaDB) as well as HBase, Hadoop and Pig when he was a data analyst. Now he's trying AllegroGraph when not using Neo4J. He was a BIOS engineer who worked on both assembly and UEFI projects, an IPPBX engineer, and a lover of embedded systems. He is recently mainly attracted by Software Defined Radio. Specialties: C, x86 Assembly, Python, Linux, SDR.

Public Talks

• 16 Jan 2025, 通訊韌性(HF), 網路自由小聚
• 4 Jun 2024, Online: 'Amis Moedict: An open source dictionary for Formosan Languages, talk at Chi Hack Night #592.
• 16 Apr 2024, Solving CTI Sector Incoherence in a Living Growing OpenCTI Repository: Extend STIX 2.1 FTW, talk in FIRST CTI 24, Berlin.
• 21 Oct 2022, 衛星通訊的資安觀點.pdf, talk in NDU.
• 29 Sep 2022, Metaverse or Metaworse? Talk in Shift++ 2022
• 16-18 Nov 2021, Transition to 5G, talk in CLOUDSEC 2021
• 11 Nov 2021, Machine Not‐Learning Threat Reports, talk in DECODE 2021
• 6 Apr 2021, 企業專網的資安風險: 以自建專網為例 , talk in CYBERSEC 2021
• 20 Oct 2020, Compliant Yet Vulnerable: Critical Risks of Measuring Instruments in Production Line, talk in SecTor 2020 with Shin Li.
• 27 Nov 2020, Lost in Translation: 当工控协议翻译出错, a talk in Insec World 成都．世界信息安全大会 2020
• 24-26 Nov 2020, How Protocol Gateway May Introduce More Problems than They Solve, talk in CLOUDSEC 2020.
• 19 Nov 2020, Industrial Protocol Gateways: A Deep-Dive of Moxa MGate 5105-MB-EIP, talk in HITB Cyber Week 2020.
• 10 Nov 2020, Edge Computing, a talk on facial recognition access control systems on the edge.
• 12 Aug 2020, PSD2及開放銀行與第三方軟體造成的資安隱患, Talk in CYBERSEC 2020
• 26 Jul 2020, The Fragile Art of Edge Computing: Walk through Access Control Systems, Talk in HITB Lockdown 002, with Roel Reyes, Morton Swimmer, Joey Costoya, Vincenzo Ciancaglini
• 15 Jul 2020, How Protocol Gateways May Introduce More Problems than They Solve, Talk in RSA APJ 2020
• 29 Mar 2019, Industrial Remote Controller: Safety, Security, Vulnerabilities, Talk in Black Hat Asia 2019, with Akira Urano.
  Slides
• 13 Dec 2018, 工業用無線控制器的封包逆向與韌體分析, Talk in HITCON Pacific 2018
• 15 Mar 2018, 智慧城市的資安挑戰與防禦模型, Talk in Taiwan Cyber Security Summit 2018
• 8 Dec 2017, The Age of Broken ATMs, Keynote speech in HITCON Pacific 2017, with Fyodor Yarochkin
• 7 Dec 2017, Adversarial Machine Learning and Several Counter-Measures, Talk in HITCON Pacific 2017, with Ricky Chou
• 28 Dec 2016, Code BROWN in the Air, Talk in 33C3, with Stephen Hilt
• 3 Aug 2016, PLC for Home Automation and How It Is as Hackable as a Honeypot, Talk in BSidesLV
• 29 Aug 2015, Your Lightbulb Is Not Hacking You: Observation from a Honeypot Backed by Real Devices, Talk in HITCON 2015 CMT, with Max Goncharov
• 26 Aug 2015, Building Automation and Control: Hacking Subsidized Energy Saving System, Talk in HITCON 2015 ENT, with Stephen Hilt

Publications

• Numaan Huq, Philippe Lin, Roel Reyes, Charles Perine (2024), A Survey of Cloud-Based GPU Threats and Their Impact on AI, HPC, and Cloud Computing, Trend Micro Research, 23 May 2024.
• Charles Perine, Philippe Lin, Lord Remorin, Josiah Hagen, Casey Colando (2024), Distributed Energy Generation Gateway (In)security, Trend Micro Research, 11 Jan 2024.
• Numaan Huq, Vladimir Kropotov, Philippe Lin, Rainer Vosseler (2023), Automotive Data: Opportunities, Monetization, and Cybersecurity Threats in the Connected Vehicle Landscape, Trend Research for VicOne, 15 Nov 2023.
• Fyodor Yarochkin, Philippe Lin, Bakuei Matsukawa, Ryan Flores, Chen-yu Dai (2023), A Closer Exploration of Residential Proxies and CAPTCHA-Breaking Services, Trend Micro Research, 27 July 2023.
• Fyodor Yarochkin, Philippe Lin, Bakuei Matsukawa, Ryan Flores, Chen-yu Dai (2023), Agents of Abuse: Residential Proxies and CAPTCHA-Solving Services, Trend Micro Research, 26 July 2023.
• Craig Gibson, Vladimir Kropotov, Philippe Lin, Robert McArdle, Fyodor Yarochkin (2022), Leaked Today, Exploited for Life: How Social Media Biometric Patterns Affect Your Future, Trend Micro Research, 18 Oct 2022.
• Numaan Huq, Roel Reyes, Philippe Lin, Morton Swimmer (2022), Metaworse: The trouble with the Metaverse, Trend Micro Research, 8 Aug 2022.
• Numaan Huq, Roel Reyes, Philippe Lin, Morton Swimmer (2022), METAVERSE OR METAWORSE? Cybersecurity Threats Against the Internet of Experiences, Whitepaper, 8 Aug 2022.
• Philippe Lin, Charles Perine, Rainer Vosseler, Wen-Ya Lin (2021)The Transition to 5G: Security Implications of Campus Networks, Trend Micro Research, 27 May 2021.
• Vincenzo Ciancaglini, Joey Costoya, Philippe Lin, Roel Reyes (2020) Identified and Authorized: Sneaking Past Edge-BasedAccess Control Devices, Trend Micro Research, 22 Sep 2020
• Marco Balduzzi, Luca Bongiorni, Ryan Flores, Philippe Lin, Charles Perine, Rainer Vosseler (2020) Lost in Translation: When Industrial Protocol Translation Goes Wrong, Trend Micro Research, 5 Aug 2020
• Craig Gibson, Vladimir Kropotov, Philippe Lin, Rainer Vosseler, Fyodor Yarochkin (2020) The Deep Blue Sea of 5G
• Jonathan Andersson, Marco Balduzzi, Stephen Hilt, Philippe Lin, Federico Maggi, Akira Urano, Rainer Vosseler (2019) A Security Analysis of Radio Remote Controllers for Industrial Applications, Trend Micro Research, 15 Jan 2019
• Vladimir Kropotov, Philippe Lin, Fyodor Yarochkin, Feike Hacquebord (2017) A Closer Look at North Korea’s Internet, blog article at Trend Micro Research, 17 Oct 2017
• Philippe Lin, Dr. Morton Swimmer, Akira Urano, Stephen Hilt, Rainer Vosseler (2017) Securing Smart Cities, Trend Micro Research, 30 May 2017
• Stephen Hilt, Philippe Lin (2016) Leaking Beeps:A Closer Look at IT Systems That Leak Pages, Trend Micro Research, Dec 2016
• Stephen Hilt, Philippe Lin (2016) Leaking Beeps: Unencrypted Pager Messages in Industrial Environments, Trend Micro Research, 25 Oct 2016
• Stephen Hilt, Philippe Lin (2016) Leaking Beeps: Unencrypted Pager Messages in the Healthcare Industry, Trend Micro Research, 26 Sep 2016
• Philippe Lin (2015) Hacking Team Uses UEFI BIOS Rootkit to Keep RCS 9 Agent in Target Systems - TrendLabs Security Intelligence Blog, blog article at Trend Micro Research, 13 Jul 2015
• Ryan Flores, Akira Urano, Noriaki Hayashi, Lion Gu, Lord Alfred Remorin, Ju Zhu, Philippe Lin, and Joey Costoya (2015) Sextortion in the Far East
• Philippe Lin (2007 ed.) 張裕宏教授論文選集, 國立臺灣大學語言學研究所
• Philippe Lin (2005) Automatic Processing of Languages with Small-Scaled Corpus: Part-of-Speech Tagging and Partial Parsing SaiSiyat and Applications, Master's Thesis in Linguistics, National Taiwan University

Short Articles

• With Joey Costoya, Abusing Web Services Using Automated CAPTCHA-Breaking Services and Residential Proxies, 25 May 2023
• Craig Gibson, Vladimir Kropotov, Philippe Lin, Rainer Vosseler, Risks in Telecommunications IT, 29 July 2021.
• Philippe Lin, A Ride on Taiwan’s Self-Driving Bus, Trend Micro Research, 22 Oct 2020.
• Vincenzo Ciancaglini, Joey Costoya, Philippe Lin, Roel Reyes, Exploitable Flaws Found in Facial Recognition Devices, 22 Sep 2020.
• Philippe Lin, Shin Li, Roel Reyes, Gloria Chen, Security Dive: Devices Supporting SCPI, VISA Protocols, Trend Micro Research, 28 Jan 2020.
• CH Lei, Fyodor Yarochkin, Lenart Bermejo, Philippe Lin, Razor Huang, Lazarus Campaign Uses Remote Tools, RATANKBA, and More, 24 Jan 2018.
• Roel Reyes, Philippe Lin, David Sancho, Morton Swimmer, Do Online Mainframes Compomise Business Processes?, 13 July 2017.