Do you want to know what is happening beneath the screen?
Let's discover together with Max Goncharov the deep dungeons of underground online economy. Then, we will have a discussion about specifics of Korea.
Max Goncharov is a senior security virus analyst at
Trend Microbased in Germany; he is visiting Korea to present at the
POCconference.
Joshua James has a broad background of collaboration with police of different countries (including Korea) and academic research.
Details of their profiles and the event's topics are below.
Topic 1:
40 Min.
“Building the Botnet. How much and how easy…”
Online fraud has long since moved from being a mere hobby to a means for cybercriminals to earn a living. Almost every day we can see reports of new cybercrime activity in social networks, blogs and forums, or the part of the easily 'visible' Internet.
There is another side to the Internet however - its criminal underbelly - and here just like on the blogs and forums, communication is key. In this talk we will cover the principles of underground information exchange, ways to secure money/goods in underground transactions and basic cyber hierarchy.
We will also talk about underground products and services. Crypt services, DDoS attacks, Traffic resale, Bulletproof servers, SMS Fraud, Spam services and Credit card Hijacking - these will be covered with pricing comparisons shown over the last 2-3 years. We will go through the typical pricing steps of a criminals attack - from buying software, all the way to monetize the volumes of infected victims.
This presentation will be based on the Max's research paper:
http://gmax.at/101Topic 2:
40 Min.
“APT Targeted attacks use case and cyber underground”
We will analyse some of the most popular Russian underground forums where we can see footprints of possible APT announcement. We will discuss attacks with interesting use cases, such as the attack on the Ukrainian Voting system, as well as possible leads to Russian attackers. Next we will take a look RAT tools and how they are available and wildly used for account hacking which can lead to APT.
Topic 3:
20 Min.
"Cybercrime in Korea and what to watch out for"
Joshua James and students from
KITRI's Best of the Bestinformation security program will give a quick discussion about some common cybercrimes that happen in Korea, and how to protect yourselves.
Senior security Virus Analyst responsible for security consulting to business partners (internal, external), creation of security frameworks, designing technical security architecture, overseeing the build out of an enterprise incident response process, and creation of the enterprise risk management program.
Participated as a speaker in various conferences and training seminars on the topic of cybercrime and related issues (e.g.cyberterrorism, cybersecurity, underground economy, etc.), like BlackHat, DeepSec, VB, APWG, POC etc.
Joshua James is a researcher with the Digital Forensics Investigation Laboratory as well as a lecturer and researcher with University College Dublin, Korea University, Korea National Police University and Soon Chun Hyang University. Coming from a background in network security and administration, his focus is now on the formalization and automation of digital forensic investigation methods, and the application of these methods in low cost, open source solutions for digital investigators.
