Inside the bad actor's studio
Using research from more than one billion users, 500 billion events, and 50 million malicious accounts collected from global online services, Julian Wong details some of the sophisticated attack techniques being used by modern day online criminals and demonstrates how these types of attacks can be detected and mitigated by leveraging artificial intelligence.
| Talk Title | Inside the bad actor's studio |
| Speakers | Julian Wong (DataVisor) |
| Conference | O’Reilly Security Conference |
| Conf Tag | Build better defenses |
| Location | New York, New York |
| Date | October 30-November 1, 2017 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
The amount of user data being processed on any given day is astronomical and can overwhelm even the most seasoned security teams. Today’s most innovative online criminals know how to take advantage of a company’s inability to focus on anything except anomalies and blend in among the masses. Well-organized crime rings exploit the latest breaches, stolen identities, and free tools to create millions of fake accounts to hide among billions of benign users of your service, and they are waging a variety of large-scale attacks to exploit these services for financial gain. Using research from more than one billion users, 500 billion events, and 50 million malicious accounts collected from global online services, Julian Wong details some of the sophisticated attack techniques being used by modern day online criminals to evade detection, including hiding locations through VPNs and cloud-hosting services, mobile device flashing, and faking browser info, user-agent strings, and MAC addresses. Julien then uses this data to provide context for how complex the detection challenges being faced by security teams are and demonstrates how these types of attacks can be detected and mitigated by leveraging the latest in artificial intelligence, including Spark-based big data security analytics and unsupervised machine learning.
