Upload File

lucio frega, threat researcher deutsche telekom yber ...€¦ · this predictive layer goes beyond...

  • Home
  • Documents
  • Lucio Frega, Threat Researcher Deutsche Telekom yber ...€¦ · This predictive layer goes beyond network activity, behavior, metadata and state-of-the-art technologies. We match
1
DTAG-CTI (Deutsche Telekom - Cyber Threat Intelligence) protects clients against cyber-aacks worldwide. Like us, the adversaries too have cyber-experts. They connuously enhance their malware aacks with stealth and an-forensics capabilies. This increases our overall risk and also the cost of detecon and remediaon. For example, repacked malware strains evade endpoints protecon, fluxed C2s bypass SIEM, and obfuscaons fool reversing. We can cope with this in spite of the high cost. However, it all amounts to nothing if, by the me a defense is erected, the aack has reshaped and shiſted direcon again, turning those defenses obsolete. We in DTAG-CTI have erected predicve defenses using malwares code-similarity. This predicve layer goes beyond network acvity, behavior, metadata and state-of- the-art technologies. We match binaries using Cythereals automacally generated YARA rules, unearthing previously unseen strains despite reshuffling, repacking, and other evasions. These predicve defenses nail the malware in the bud,before it has had a chance to spread or even to report to its C2. As an extra value, these early detecons also empower early idenficaon. We learn from the start who is against us and hunt for associaons regardless of their obfuscated binaries, dissimilar metadata, IOCs, and payloads. Together with the professionalism and commitment of our teams and partners, we have found in the experse, dedicaon, and engagement of Cythereal a very powerful and astounding ally that brings threat hunng and cyber-defense to a superior level. Lucio Frega, Threat Researcher Deutsche Telekom - Cyber Threat Intelligence Lucio Frega is a computer forensic examiner cerfied by IACIS (Internaonal Associaon of Computer Invesgave Specialists). He has over 40 years of worldwide experience in IT/OT security in Banks, Pharma, Telcos and the energy sector. Lucio is not affiliated with Cythereal. His comments are not to be construed as the official posture of any stakeholder but himself. About the Author/Disclosure

Upload: others

Post on 25-Jun-2020

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Lucio Frega, Threat Researcher Deutsche Telekom yber ...€¦ · This predictive layer goes beyond network activity, behavior, metadata and state-of-the-art technologies. We match

DTAG-CTI (Deutsche Telekom - Cyber Threat Intelligence) protects clients against cyber-attacks worldwide.

Like us, the adversaries too have cyber-experts. They continuously enhance their malware attacks with stealth and anti-forensics capabilities. This increases our overall risk and also the cost of detection and remediation.

For example, repacked malware strains evade endpoint’s protection, fluxed C2s bypass SIEM, and obfuscations fool reversing.

We can cope with this in spite of the high cost. However, it all amounts to nothing if, by the time a defense is erected, the attack has reshaped and shifted direction again, turning those defenses obsolete.

We in DTAG-CTI have erected predictive defenses using malware’s code-similarity.

This predictive layer goes beyond network activity, behavior, metadata and state-of-the-art technologies. We match binaries using Cythereal’s automatically generated YARA rules, unearthing previously unseen strains despite reshuffling, repacking, and other evasions. These predictive defenses nail the malware “in the bud,” before it has had a chance to spread or even to report to its C2.

As an extra value, these early detections also empower early identification. We learn from the start who is against us and hunt for associations regardless of their obfuscated binaries, dissimilar metadata, IOCs, and payloads.

Together with the professionalism and commitment of our teams and partners, we have found in the expertise, dedication, and engagement of Cythereal a very powerful and astounding ally that brings threat hunting and cyber-defense to a superior level.

Lucio Frega, Threat Researcher Deutsche Telekom - Cyber Threat Intelligence

Lucio Frega is a computer forensic examiner certified by IACIS (International Association of Computer Investigative Specialists). He has over 40 years of worldwide experience in IT/OT security in Banks, Pharma, Telcos and the energy sector. Lucio is not affiliated with Cythereal. His comments are not to be construed as the official posture of any stakeholder but himself.

About the Author/Disclosure

Telekom Malaysia

Telekom 21

FREGA - Los Infelices y El Caracter Popular de La Revolución Artiguista

Telekom Slovenije Group BUY - Ljubljanska borza · Telekom Slovenije Group InterCapital Securities Ltd 1/22 Telekom Slovenije Group – Initial Company Analysis Telekom Slovenije

Crnogorski Telekom 2017 AnnuAl reporT izvjestaj 2017 enlg.pdf · Crnogorski Telekom 2017 annual reporT To our shAreholders abouT crnogorSki TelekoM Crnogorski Telekom (CT) is the

Educar en Creatividad Frega

DEUTSCHE TELEKOM OPEN TELEKOM CLOUD …carrier.huawei.com/~/media/CNBG/Downloads/track/Deutsche Telekom...DEUTSCHE TELEKOM OPEN TELEKOM CLOUD POWERED BY HUAWEI FUSIONSPHERE The First

Frega Test Procedure

Telekom Dunyasi_Ekim

Chapter 4: “Newton’s Laws of Motion” Created by G. Frega

===!"§ Deutsche Telekom Deutsche Telekom, MVC 2, T-Pay interne Präsentation 31.10.2002, Seite 1 Deutsche Telekom. Das Bezahlsystem der Deutschen Telekom

C yber A ttack R emediation & M itigation Introducing

Telekom tower

C YBER T HREATS AND R ESPONSE

Ana Lucía Frega Margery M. Vaughananaluciafrega.com.ar/Multimedia/Creatividadmusical...Ana Lucía Frega y Margery M. Vaughan Creatividad Musical, fundamentos y estrategias para su

Laporan Tahunan 2000 - Telekom Malaysia...Laporan Tahunan 2000 Bahagian Perhubungan Korporat Telekom Malaysia Berhad Wisma Telekom, Jalan Pantai Baharu 50672 Kuala Lumpur TELEKOM MALAYSIA

Telekom Innovation

SEC vs. Magyar Telekom, PLC and Deutsche Telekom, AG

Ana frega, el uruguay del 900

Telekom Srbija

FREGA - Metodologia Comparada de La Educacion Musical

yber Intelligence Tradecraft ertification - Treadstone71 · yber Intelligence Tradecraft ertification ... ies taking the student through the cyber intelligence lifecycle from priority

BOLETÍN INFORMATIVO DIGITAL Noviembre 2011 · 2018. 4. 25. · Ana Lucía Frega. Presentó el presidente de la AAL, Dr. Pedro Luis Barcia, y la autora. Ana Lucía Frega emprende

PowerPoint Presentation€¦ · turk telekom group . turk telekom group . turk telekom group . turk telekom group . turk telekom group . turk telekom group . turk telekom group

H oles Told by Louis Sachar Retold by Nicolas Frega

Deutsche Telekom Laboratories · PDF fileVoiceprint management: load and save voiceprints via MRCP ... Deutsche Telekom Laboratories Deutsche Telekom Laboratories Deutsche Telekom

yber isks Insurance - info.axisgroup.insure

Bereichsbroschüre Telekom

yber Intelligence Tradecraft ertification - Cyber Shafarat · We see what others cannot Treadstone 71© yber Intelligence Tradecraft ertification

yber Intelligence Tradecraft ertification - Treadstone 71 · We see what others cannot Treadstone 71© yber Intelligence Tradecraft ertification

Telekom Solutions

Agencia Graciela Frega

Una investigación cualitativa sobre curriculo, identidad y arte · 2008-10-15 · Ana Lucía Frega Una investigación cualitativa sobre curriculo, identidad y arte ANA LucíA FREGA

What “REALLY” matters in yber?

Circular - Amazon S3... · All modules for Ethical Hacking , yber Laws and Forensic Investigations with case studies. Dr. Rajdeepsinh Jhala Deputy ommissioner of Police, yber rime