CypherCon 2022

How Ransomware Can Follow You to the Cloud

Kat Traxler

Abstract:

Ransomware is a financially motivated crime. The goal is to inhibit business system in order to extract a payment. Historically, there’s been plenty of financial gain from ransoming data as it resides in traditional onPrem systems. So the question is, will there be evolutionary pressure on attackers – forcing them to evolve tactics?

In this talk I will be demo-ing strategies threat actors might employ to affect availability of business data in the cloud.

I will be showcasing:
– How ransomware can target IaaS environments, specifically in AWS
– Highlighting the signals ransomware in the cloud might exhibit before encryption
– Ways attackers can compromise availability of S3
– Strategies for threat detection and risk mitigation of your AWS environment

Kat Traxler

Midwest Hacker

Kat Traxler is a Security Professional in the Twin Cities performing penetration testing, security architecture and research in the areas of Web Security, IAM, Payment Technologies and Cloud Native Technologies. She has been a proud SANS facilitator since 2016 and currently holds GIAC-GSEC, GIAC-GCWN and GIAC-GDAT certifications. Kat Traxler is obsessed with the attack surface at the confluence of Identity and Cloud Platform APIs and thinks you should be too.

How Ransomware Can Follow You to the Cloud

Kat Traxler

Kat Traxler

You'll wish you went sooner!

Register for Spring 2023

Contact Us

(414) 559 0221

hello@cyphercon.com

Connect

Twitter (@cyphercon)