Title: Combatting advanced cybersecurity threats with AI & Machine Learning
Speaker: Andrew Gardner, Sr. Technical Director
Abstract: Advanced AI & ML are the future of cybersecurity. They are used to compile complex patterns & understand interactions from diverse security data. This session will demonstrate how it works.
Date: Wednesday, July 26th
Location: Business Hall – Theater A
Title: Digital vengeance: exploiting the most notorious C&C toolkits
Speaker: Waylon Grange, Senior Threat Researcher, Symantec
Abstract: Every year thousands of organizations are compromised by targeted attacks. In many cases the attacks are labeled as advanced and persistent which suggests a high level of sophistication in the attack and tools used. Many times, this title is leveraged as an excuse that the events were inevitable or irresistible, as if the assailants' skill set is well beyond what defenders are capable of. To the contrary, often these assailants are not as untouchable as many would believe. If one looks at the many APT reports that have been released over the years, some clear patterns start to emerge. A small number of Remote Administration Tools (RATs) are preferred by actors and reused across multiple campaigns. Frequently cited tools include Gh0st RAT, Korplug/Plug-X, and XtremeRAT among others. Upon examination, the command and control components of these notorious RATs are riddled with vulnerabilities. Vulnerabilities that can be exploited to turn the tables from hunter to hunted.
Date: Thursday, July 27
Location: South Seas CDF
Title: Wire me through machine learning
Speakers: Ankit Singh, Threat Analyst Engineer, Symantec, Vijay Thaware, Security Response Lead, Symantec
Abstract: In this world of technology where communication through email plays an important role, vicious threats also follow. One of the most beautifully crafted email threats commonly known as Business email compromise (BEC) scam or CEO fraud has shown its impact on more than 400 organizations, resulting in a loss of over US $3 billion. The BEC scam, also known as whaling, is a targeted attack sent to higher-level management, specifically to C-level executives, masquerading as an email communication from a CEO to a CFO. These emails are designed in a way that is intended to influence the target to perform financial transactions such as wire transfers at short notice. These attacks are successfully carried out by first building a level of trust with the target. This session will throw light on one of the most important tactics used by attackers to design and execute a BEC attack through machine learning.
Date: Wednesday, July 26
Location: Lagoon DEFJKL