Adversaries are Doing Stranger Things

  • Thursday, 12 Sep 2024 1:00PM EDT (12 Sep 2024 17:00 UTC)
  • Speaker: Brian Almond

In cybersecurity, adversaries continuously develop innovative methods to circumvent traditional security controls. This presentation delves into these unconventional techniques and highlights how they bypass established defense mechanisms. Based on real-world case studies, we examine many of these abnormal approaches, including non-standard tools, novel C2 methods, and developer tools used to subvert security controls. Understanding the diversity in adversary sophistication is crucial. Some groups use highly technical hacks, developing custom exploits and advanced malware.

In contrast, most others repurpose readily available tools and techniques, demonstrating that significant threats can arise from advanced and nonstandard approaches. Organizations can enhance their defenses and improve resilience against sophisticated cyber threats by understanding and anticipating these abnormal techniques. This presentation aims to equip cybersecurity professionals with the knowledge to identify and counteract these unconventional tactics, contributing to a more robust and responsive cybersecurity posture.