DEF CON Forum Site Header Art


No announcement yet.

Ransom in the Cloud

  • Filter
  • Time
  • Show
Clear All
new posts

  • Ransom in the Cloud

    Title: Ransom in the Cloud

    Traditional ransomware has become a popular tool for cybercriminals to make their buck and has cost a variety of industries hundreds of millions to billions of dollars in recent years. As trends change and corporations move from traditional data centers to cloud environments like AWS, GCP, and Azure, adversaries are adapting their techniques to match the new climate. Because of this, attackers abusing cloud APIs rather than host/network-based commands are becoming more prevalent. This talk explores the services most likely to be targeted by ransomware in AWS cloud, techniques that attackers may use, and preventative/detective measures to assist the blue team.

    Spencer Gietzen comes from a background in web development and penetration testing. He is now a Cloud Security Researcher at CrowdStrike, spearheading research and development of new and upcoming cloud threats. Spencer has published a variety of research blogs and developed cloud security tools for the open source community, such as Pacu, an offensive AWS pentesting framework.

    Speaker(s): Spencer Gietzen

    Location: Cloud Vlg


    Event starts: 2020-08-07 12:05 (12:05 PM) PDT (UTC -07:00)

    Event ends: 2020-08-07 12:50 (12:50 PM) PDT (UTC -07:00)

    For the most up-to-date information, please either visit, or use HackerTracker, which is available for iOS and Android. This is an automated message, and this data was last modified 2020-08-07T00:36 (UTC).
    August 7, 2020 12:05
    August 7, 2020 12:50
    Cloud Vlg