Federico Maggi

I enjoy doing research on various cyber-security topics.

I work with Trend Micro Research in a global team that focuses on technology and cyber-crime research.

After more than 10 years, I concluded that I’m still around in the infosec area because it gives me so many opportunities to solve new exciting problems every day.


Selected Recent Publications

A Security Evaluation of Industrial Radio Remote Controllers
Federico Maggi, Marco Balduzzi, Jonathan Andersson, Philippe Lin, Stephen Hilt, Akira Urano, and Rainer Vosseler.
In Roberto Perdisci & Magnus Almgren, eds. Proceedings of the 16th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA). Gothenburg, Sweden: Springer International Publishing, (to appear). (June 19, 2019) [PDF]

Investigating Web Defacement Campaigns at Large
Federico Maggi, Marco Balduzzi, Ryan Flores, Lion Gu, and Vincenzo Ciancaglini.
In Proceedings of the 2018 on Asia Conference on Computer and Communications Security. AsiaCCS ’18. New York, NY, USA: ACM, 443–456. DOI: http://dx.doi.org/10.1145/3196494.3196542 (June 4, 2018) [PDF]

An Experimental Security Analysis of an Industrial Robot Controller
Davide Quarta, Marcello Pogliani, Mario Polino, Federico Maggi, Andrea Maria Zanchettin, and Stefano Zanero.
In Proceedings of the 38th IEEE Symposium on Security and Privacy. S&P ’17. San Jose, CA: ACM. DOI: http://dx.doi.org/10.1109/SP.2017.20 (May 2017) [PDF]

Go to the full list of publications »


Selected Recent Talks

Hey Operator, Where’s Your Crane? Attacking Industrial Remote Controllers
Balduzzi, Marco and Maggi, Federico.. Hack In The Box Amsterdam (Peer-reviewed Talk), Amsterdam, The Netherlands. (May 10, 2019) - Link: https://conference.hitb.org/hitbsecconf2019ams/sessions/hey-operator-wheres-your-crane-attacking-industrial-remote-controllers/ [PDF]

When Machines Can’t Talk: Security and Privacy Issues of Machine-to-Machine Data Protocols
Maggi, Federico and Quarta, Davide.. Black Hat Briefings Europe (Peer-reviewed Talk), London, UK. (December 6, 2018) - Link: https://www.blackhat.com/eu-18/briefings/schedule/#when-machines-cant-talk-security-and-privacy-issues-of-machine-to-machine-data-protocols-12722 [PDF]

Breaking the Laws of Robotics: Attacking Industrial Robots
Quarta, Davide and Pogliani, Marcello and Polino, Mario and Maggi, Federico and Zanero Stefano.. Black Hat Briefings USA (Peer-reviewed Talk), Las Vegas, US. (July 27, 2017) - Link: https://www.blackhat.com/us-17/briefings.html#breaking-the-laws-of-robotics-attacking-industrial-robots [PDF]

Go to the full list of talks »