2022-06-18, 16:00–16:25, Track 2 (Moody Rm 101)
Catch threats before they become incidents, having said that darkweb is the first place where your organization’s breached data usually lands.
Darkweb threats are rising exponentially, threat actors progressively gather across the dark web to coordinate, plan, and launch attacks. We can leverage Darkweb as a source for vital and invaluable actionable intelligence to be used to presciently fight against adversaries, and we can use the intelligence to substantially reduce loss.
We will talk about various ways and sources to gather, identify and neutralize darkweb threats. Techniques tools and procedures to stay ahead of the curve and use the adversary’s playground against them to beat them in their own game.
We will talk about -
Intel - What and where - (where you find threat Intel and what you should look for)
Getting Intel - (Scraping the intel HUMINT, OSINT, TECHINT)
Present in silence. - (Attract Intel not attention)
Engage TA - (Tracking the TA and engaging with him to extract vital intel).
In the modern-day of the coordinated and targeted attacks, the intelligence gathered from the darkweb makes the organization certainly aware of the adversaries and potential attacks. The darkweb perspective, chatters, and attack planning regarding an organization will give a broad spectrum and visibility and help uncover exposed leaks.
With over 5 years of experience protecting Banks and the financial sector against cyber threats, Saurabh Chaudhary is a renowned Security Researcher and a prominent speaker and trainer. He has spoken and trained people at international conferences like "The Texas cybersecurity summit", "BSides Budapest", "OWASP Indonesia, and several universities and forums.
He is a published researcher with multiple research papers on malware, ransomware, and cyber espionage and has experience and expertise in cyber threat intelligence, Malware, YARA rules, DFIR, etc.
He is a passionate InfoSec enthusiast and tech enthusiast. He is one of the chapter leaders of OWASP and is very much connected and contributing to the information security community.