2024-09-20, 14:30–15:10 (Europe/Belgrade), Tesla
Information stealing malware have been quite a menace for some time. In this talk we will briefly go through infostealers, MAAS model and related ecosystem, and focus on the monetisation and abuse of stolen data collected by infostealers. The talk will contain a poor attempt on data analysis.
Information stealing malware (infostealers) have become a serious threat to organizations as well as to individuals. The data stolen by infostealers have been utilized in a number of notorious attacks. In this talk we will start by introducing main concepts related to infostealers, such as ftw are these kind of badness, what kind of data is collected, infection vectors. Next, the talk will go through the infostealer cybercriminal environment; which will set up a stage for the part where we look at the monetisation and abuse methods of stolen data collected by infostealers, colloquially referred as (malware/infostealer) logs, and include review of marketplaces where the data is sold. Finally, we will amuse ourselves by the speaker’s poor attempts on data analysis, where the presenter will show insights gained from the public dumps of infostealer logs.
The talk is suitable for all kind of audience and very light on technical details.
CitySecs Finland, Volunteering at DisObey conference, Dad of twin rascals