2025-12-10 CERIAS - From MOVEit to EBS-- a Look at Mass Exploitation Extortion Campaigns скачать в хорошем качестве

2025-12-10 CERIAS - From MOVEit to EBS-- a Look at Mass Exploitation Extortion Campaigns

Recorded: 12/10/2025 CERIAS Security Seminar at Purdue University From MOVEit to EBS --a Look at Mass Exploitation Extortion Campaigns Peter Ukhanov, Google Public Sector (Mandiant) Over the past several years, CL0P has executed multiple mass exploitation campaigns using zero-day vulnerabilities in popular software products that resulted in mass data exfiltration. In this talk we''ll take a look at the vulnerabilities that enabled their access, discuss ways defenders could have detected the exploits, and explore hardening recommendations to make public facing applications harder to compromise.Peter Ukhanov is a Principal Consultant with the Google Public Sector (Mandiant) IR team. Prior to joining Mandiant, Peter worked at Dragos focusing on OT/ICS environments. He started his career in incident response and digital forensics in 2014 at the Defense Information Systems Agency, spending almost 7 years supporting various Department of Defense entities. (Visit: www.cerias.purdue.edu)