Profile
In 2022, Jon authored "The Art of Cyberwarfare," which earned him the SANS Difference Makers Award, solidifying his status as a thought leader in the industry. The following year, SANs recognized his work again, awarding his most notable research, "The Ransomware Diaries," detailing his operations to infiltrate the real-world humans committing ransomware crimes.
Jon has made significant contributions to the field, particularly through human intelligence (HUMINT), which he used to execute both covert and overt operations aimed at infiltrating the notorious LockBit ransomware gang. This work not only provided insight into the gang's activities but also supported the National Crime Agency's (NCA) Operation Cronos, resulting in federal indictments against several of the gang's members. These achievements showcase Jon's dedication to cybersecurity and effective collaboration with law enforcement.
Jon's work led to an appearance on CBS's 60 Minutes, where he discussed his research and career. Additionally, major media outlets such as The New York Times, Wired, Bloomberg, Fox, CNN, Reuters, and other news organizations have featured his work. Jon regularly speaks at conferences, including giving talks at RSA and DEFCON.
Qualifications Summary
- Over 16 years of experience in diverse intelligence and cybersecurity disciplines
- Author of The Art of Cyberwarfare, published by No Starch Press
- Author of The Ransomware Diaries research series
- Contributor - https://www.sans.org/cyber-security-courses/cybercrime-intelligence/
- Awarded the SANS Difference Maker Award in both 2022 & 2023
- Featured on 60 Minutes
Presentations and Podcasts:
- How an infamous ransomware gang found itself hacked – podcast | News | The Guardian
- You are in a Cyber War. Don't be a dumb*** and try to ignore it | YouTube | David Bombal
- Behind the Screens: Decrypting the Ransomware Diaries | Keynote | SANS Ransomware Summit 2024
- Behind Enemy Lines: Going undercover to breach the LockBit Ransomware Operation | DEFCON 32
- Targeted Ransomware: A potent Threat Begins to Proliferate | RSA Conference
Media
- 60 Minutes: Infiltrating Ransomware Gangs on the Dark Web | CBS
- Trafficked with Mariana van Zeller Season 3 Episode 7 Cyber Pirates Online | National Geographic
- How cyber-crime has become organized warfare | Four Corners | ABC
- US and allies accuse Russian man of running ransomware gang | CNN
Publications and Papers
- Art of Cyberwarfare(No Starch Press)
- Ransomware Diaries (Analsyt1)
- History of rEvil (Analyst1)
- Ransomware-Centric Collection and Threat Profiling | Analsyt1
- The Black Vine cyberespionage group | Symantec/Broadcom
- North Korea: Intelligence Assessment 2022 | Analsyt1
- Absolute Ransom: Nation-State Ransomware | Analsyt1
- Ransom Mafia - The World's First Ransom Cartel | Analyst1
Certifications Summary
- CISSP - Certified Information Systems Security Professional
- CEH - Certified Ethical Hacker
- Sec+ - Security Plus
