Presented at
BSidesLV 2023,
Aug. 8, 2023, 11 a.m.
(25 minutes).
Account Take-Over is about more than just getting authenticated. Access acquisition has many faces, including for MFA-enabled accounts. Access leverage can have many faces as well, and having authenticated no longer guarantees you're indeed who you say you are. We present a novel methodology for analyzing IAM and infrastructure access logs for detecting the various attack scenarios.
Presenters:
-
Yuval Zacharia
Yuval Zacharia is a cyber security expert. She served in the prestigious 8200 Unit in the Israel Defense Forces, focusing on research, threat hunting, and incident response. Today she works at Hunters as a Security Research and ML Team Leader. Yuval is also a classical ballet dancer and in her free time she enjoys cooking.
Links: