Red Teaming "Enemy of the State"

Presented at Kiwicon 9: Cyberwar Is Hell (2015), Dec. 10, 2015, 2:15 p.m. (45 minutes).

As information security threats continue to grow in prevalence and sophistication, having a clear, holistic measure of your organization's security measures is critical. Traditional security testing does not always accurately reflect the true tactics, tradecraft or simple pure grit and determination of your adversary. Red teaming is the process of viewing a problem from an adversary or competitor's perspective. Using a range of structured creative and critical thinking techniques, a red team challenges assumptions and recognizes vulnerabilities from an outsider's perspective in order to make an organization more effective and secure. Possibly the most sophisticated cyber actors are state-sponsored attackers. This presentation is about how to red team like a nation state by demonstrating the real threat from a state-sponsored attacker on high value target company. We will show that what makes state-sponsored actors so successful is their dedication to the reconnaissance and weaponization steps of the cyber kill chain. Red Team Alternate Reality Testing (ART) mimics these cyber kill chain steps in real-life threat scenarios to test all aspects of a company's security " technical, physical and social. Specifically we will show how state-sponsored attackers undertake reconnaissance, both online (OSINT) and physically (surveillance) on a company and its employees. We will then show how these attackers weaponize their reconnaissance to determine specific threat vectors: external threats, insider threat (and the threats nobody knows are there), in order to successfully compromise and command and control a target.


Presenters:

  • Wayne
    Wayne is an experienced security tester, having conducted security assessments for a range of leading Australian and international organisations. Wayne is one of Australia's leading social engineering specialists, earning a perfect score at the 2010 Defcon Social Engineering Tournament. Wayne has unique expertise in Red Team Assessments, Physical Security and Social Media Security, and has presented to a number of organisations and government departments on the current and future state of the cyber security landscape in Australia and overseas.

Links:

Similar Presentations: