Demystifying Cloud Infrastructure Attacks - Alexander Andersson - Security Fest 2024 скачать в хорошем качестве

Demystifying Cloud Infrastructure Attacks - Alexander Andersson - Security Fest 2024

Demystifying Cloud Infrastructure Attacks: Threat actor tactics in a classic on-premises environment are well documented and understood. For example, extracting credentials from memory and then pass-the-hash is a common technique to move laterally in Windows. But how do threat actors move laterally between cloud workloads and compute instances? What are the common persistence techniques, and what are the high value targets we need to protect? Alexander is Principal Forensic Consultant at Truesec and will in this session share his learnings from thousands of hours of enterprise forensics. You will learn how cloud tactics differ from on-premises and see the latest techniques used in real attacks against cloud infrastructure. Presented at Security Fest 2024. About Alexander Andersson Alexander is a Principal Forensic Consultant at Truesec. Alexander has a background in red teaming and software development. Today, he spends most of his time providing incident response services to companies that have suffered from an attack. He has led hundreds of complex investigations into everything from full-scale ransomware attacks to zero-day exploits and APT campaigns. Whenever not in an active incident, Alexander spends time in research and development with a focus on both novel forensic techniques and offensive vulnerability research. About Security Fest 2024 Join us on May 30-31 This summer, Gothenburg will become the most secure city in Sweden! We'll have two days filled with great talks by internationally renowned speakers on some of the most cutting edge and interesting topics in technical information security! Our attendees will learn from the best and the brightest, and have a chance to get to know each other during the lunch, dinner, breaks in the sponsor area and of course the awesome after-party! Please note that you have to be at least 18 years old to attend. Highlights of Security Fest Interesting IT security talks by renowned speakers Breakfast sandwich, lunch and Thursday's dinner included Great CTF with nice prizes Awesome party!