Name: Incident Response (region4) - Analizando campañas en México
Start: 2019-07-26T16:00:00-0500
End: 2019-07-26T16:50:00-0500

Back To Schedule

Incident Response (region4) - Analizando campañas en México

During an incident investigation, our CIR team managed to detect TTP used by the clop ransomware threat actor. This includes anti-forensics, shell-coding, beaconing and lateral movement. In the talk we will show techniques to identify and analyze each artifact involved during the incident. And how the investigation was driven using threat intelligence to accelerate the analysis. Including the process to extract IOCs and how to exploit them. We will also talk about the capabilities needed by an organization that want to face these kind of threats.

Speakers

Ricardo Zarazúa & Jongmin Park

Deloitte

We are incident responders from Deloitte Mexico. We have worked with big multinational clients dealing with crisis situations like massive ransomware, APTs, frauds, DoS, phishing and more. We have worked together with multi-disciplinary and multi-national teams to face threats. Our... Read More →

Friday July 26, 2019 4:00pm - 4:50pm CDT
Universidad La Salle

Main Track

Security BSides CDMX

Ricardo Zarazúa & Jongmin Park

Attendees (52)

Security BSides CDMX

Log in to save this to your schedule, view media, leave feedback and see who's attending!

Ricardo Zarazúa & Jongmin Park

Attendees (52)