Explore a conference talk that delves into the underground market of stolen cloud accounts and their role in phishing attacks, presented by cybersecurity experts Alessandro Brucato and Stefano Chierici. Learn about the complex dark economy behind phishing emails, focusing on how compromised Amazon Simple Email Service (SES) accounts are traded and exploited. Discover the detailed investigation of two threat actors - an Indonesian group compromising AWS accounts and a French threat actor launching phishing campaigns targeting French travel card users. Master new detection techniques for monitoring email-related events not logged in CloudTrail, including implementations using Amazon Simple Notification Service, CloudWatch, and Lambda functions. Gain valuable insights into defensive strategies against cloud-native phishing attacks through understanding the complete ecosystem of dark markets and threat actors operating in this space.
Overview
Syllabus
The Dark Economy of Stolen Cloud Accounts in Phishing Attacks- Alessandro Brucato & Stefano Chierici
Taught by
fwd:cloudsec
Related Courses
-
Cloud-Based Hacking: Hack Logins, Computers & More
-
SCARLETEEL: Advancing Cloud Attack Chains
-
AWS Security Management & AWS Security Specialist Course
-
Diploma in Amazon Web Services (AWS)
-
Cloud Hacking Basics: AWS Logging With CloudTrail and CloudWatch
-
AWS Cloud Operations for Amazon EKS - Observability and Governance Best Practices
