Omid Mirzaei
I am a security research lead in the email threat research team at Cisco Talos. With a solid foundation and a passion for safeguarding the digital world, my journey in the cybersecurity domain commenced during my doctoral studies in the COmputer SECurity (COSEC) lab at University Carlos III of Madrid (UC3M), Spain.
During the course of my PhD studies, I delved into the fascinating realms of android application triage, malware detection, and characterization, setting the stage for a fruitful research trajectory. Following the successful completion of my PhD, I further honed my skills and knowledge at the Systems Security Lab (SecLab) at Northeastern University in Boston, MA. Here, I held the roles of a postdoctoral research associate and a Part-Time lecturer. My focus shifted towards pioneering research in detecting code reuse within advanced Windows malware utilized by various campaigns in targeted attacks. This period also saw me imparting knowledge through teaching cybersecurity courses at both undergraduate and graduate levels.
My passion and expertise extend into diverse facets of cybersecurity, including computer security, mobile security, malware analysis, and the application of machine learning in the security landscape. My dedication and contributions to the field have been recognized through numerous prestigious awards.
In my spare time, I channel my enthusiasm for the field by crafting engaging blog posts, shedding light on my projects and delving into related research areas.
News
Sep 19, 2024 | I will give a talk, entitled “Catch Me If You Can: 2024 Trends in Email Threats and Evasion Techniques”, at the SecLab in Northeastern University. |
Aug 29, 2024 | Our poster, “Different Victims, Same Layout: Email Visual Similarity Detection for Enhanced Email Protection”, has been accepted to CCS’24. |
Jul 30, 2024 | I will be serving in the program committee for the USENIX Security Symposium. |
Jul 29, 2024 | Our patent, “Systems and Methods for Detecting Visually Similar Emails”, has been filed with the United States Patent and Trademark Office (USPTO). |
Jul 15, 2024 | The Hacker News has reported on my blog for HTML smuggling. |
Jul 10, 2024 | IBM X-Force Exchange has reported on my blog for HTML smuggling. |
News Archive |
Selected Publications
DIMVA'21 | SCRUTINIZER: Detecting Code Reuse in Malware via Decompilation and Machine Learning. [PDF] |
ASIACCS'19 | AndrEnsemble: Leveraging API Ensembles to Characterize Android Malware Families. [PDF] |
FGCS | AndrODet: An Adaptive Android Obfuscation Detector. [PDF] |
ASIACCS'17 | TriFlow: Triaging Android Applications using Speculative Information Flows. [PDF] |
NODY | A New Image Encryption Method: Parallel Sub-Image Encryption with Hyper Chaos. [PDF] |
All Publications |