Do you have the skills needed to defeat cyber attackers? Register now for training in San Francisco.

SANS 2018

Orlando, FL | Tue, Apr 3 - Tue, Apr 10, 2018
This event is over,
but there are more training opportunities.

Navigating the Dark Web: A Case Study in Fraud and Risk Exposure

  • Tyler Carbone, Chief Product Officer
  • Wednesday, April 4th, 12:30pm - 1:15pm

Within the past several years, three cyber security trends have converged to threaten medium-size enterprises, particularly financial institutions:

1. Attackers have become increasingly sophisticated

2. The largest enterprises have invested vast resources in cyber-defenses, making themselves harder targets

3. The value of stolen financial or personal information has become commoditized, rendering its source less relevant.

The consequences of these trends is that medium-size enterprises are under increasing threat, because their equally valuable data is necessarily protected by fewer sources than the data of larger enterprises. In this talk, Terbium Labs and its customer, Baxter Credit Union (BCU), will discuss the problem of establishing a risk baseline as a medium size enterprise, and the necessity of ongoing visibility into exposure of payment card, financial, and personal data which may leak to, or be for sale, on the dark web. In this session, BCU will walk through its initial pain points and reasons for seeking a dark web data provider. These pain points are focused on establishing a baseline level of exposure, and implementing an ongoing process for immediately identifying deviations from that baseline exposure. Emphasis will be placed upon how these pain points and trends generalize across mid-size financial institutions, and how dark web exposure is a key variable in estimating overall risk. Terbium will then speak to what data is on the dark web that is pertinent to the points above. The presenters will focus on both which data types best establish a baseline (items like number of personnel records and number of payment cards that will appear as a ānormalā level of exposure), and how organizations can measure deviations from that baseline to evaluate risk in real-time.

Key Takeaways:

- How a mid-size financial institution (BCU) established baseline risk exposure

- What data is on the dark web and how that data speaks to ongoing risk

- How organizations can measure that risk and react proactively to changes

Terbium Labs

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
  • Master's Degree Presentation: Presentations given by SANS Technology Institute's Master's Degree candidates.
Tuesday, April 3
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Tuesday, April 3rd, 8:00am - 8:30am Special Events
Threat Hunting via Windows Event Logs Eric Conrad Tuesday, April 3rd, 7:15pm - 9:15pm Keynote
Wednesday, April 4
Session Speaker Time Type
Unmasking the Fog: Improving Situational Awareness Brian Roy, Sr. Sales Engineer Wednesday, April 4th, 12:30pm - 1:15pm Lunch and Learn
Navigating the Dark Web: A Case Study in Fraud and Risk Exposure Tyler Carbone, Chief Product Officer Wednesday, April 4th, 12:30pm - 1:15pm Lunch and Learn
The Next Evolution of Protection: Introduction to Deep Learning Brandon Carden, Enterprise Sales Engineer Wednesday, April 4th, 12:30pm - 1:15pm Lunch and Learn
The New Cyber Security Ecosystem Matt Grantham, Technical Account Manager, Post-Sales Wednesday, April 4th, 12:30pm - 1:15pm Lunch and Learn
Identity Awareness: Do we have it? Do we need it? Nathan McKay, Security Solutions Engineer Wednesday, April 4th, 12:30pm - 1:15pm Lunch and Learn
How to Become a SANS Instructor Eric Conrad Wednesday, April 4th, 12:30pm - 1:15pm Lunch and Learn
Demisto Security Orchestration Workshop - Contest for Best Playbook Sponsored by Demisto Wednesday, April 4th, 6:00pm - 8:00pm SANS@Night
GIAC Information Reception Jeff Frisk Wednesday, April 4th, 6:30pm - 7:30pm Reception
APAC Student Reception at SANS 2018 Wednesday, April 4th, 7:00pm - 8:00pm Reception
Stuck in the Box, a SIEM's Tale Justin Henderson Wednesday, April 4th, 7:15pm - 8:15pm SANS@Night
Infosec Rock Star: Geek Will Only Get You So Far Ted Demopoulos Wednesday, April 4th, 7:15pm - 8:15pm SANS@Night
Malware Vaccination: Its Potential and Limitations Lenny Zeltser Wednesday, April 4th, 7:15pm - 8:15pm SANS@Night
Hacking Dumberly, Just Like the Bad Guys Tim Medin and Derek Banks Wednesday, April 4th, 7:15pm - 8:15pm SANS@Night
SIEM Field Guide Peter Szczepankiewicz Wednesday, April 4th, 7:15pm - 8:15pm SANS@Night
So, You Wanna be a Pentester? Adrien de Beaupre Wednesday, April 4th, 8:15pm - 9:15pm SANS@Night
Let's Go Hunting Bad Guys John Strand Wednesday, April 4th, 8:15pm - 9:15pm SANS@Night
Secure DevOps: A Puma's Tail Aaron Cure Wednesday, April 4th, 8:15pm - 9:15pm SANS@Night
Container Intrusions: Do You Even IDS Alfredo Hickman Wednesday, April 4th, 8:15pm - 8:55pm Master's Degree Presentation
Thursday, April 5
Session Speaker Time Type
Coffee & Donuts with the Graduate Students Thursday, April 5th, 7:30am - 9:00am Reception
Vendor Solutions Expo Thursday, April 5th, 12:00pm - 1:30pm Vendor Event
Vendor Solutions Expo Thursday, April 5th, 5:30pm - 7:30pm Vendor Event
The 14 Absolute Truths of Security Keith Palmgren Thursday, April 5th, 7:15pm - 8:15pm SANS@Night
Defeating Advanced Adversaries - Dismantling their attacks one step at a time Erik Van Buggenhout Thursday, April 5th, 7:15pm - 8:15pm SANS@Night
An Evening of Hacking the Internet of Things (IoT) James Lyne, Stephen Sims, Jim Shewmaker, and Guests Thursday, April 5th, 7:15pm - 10:00pm Special Events
Responding to the European Union's new General Data Protection Regulation Ben Wright Thursday, April 5th, 7:15pm - 8:15pm SANS@Night
The State of Honeypots: Understanding the Use of Honey Technologies Today Andrea Dominguez Thursday, April 5th, 7:15pm - 7:55pm Master's Degree Presentation
The Seven Deadly Sins of Incident Response Jake Williams Thursday, April 5th, 8:15pm - 9:15pm SANS@Night
Three Keys for SecDevOps Success Frank Kim Thursday, April 5th, 8:15pm - 9:15pm SANS@Night
Leverage Risk Focused Teams to Strengthen Resilience against Cyber Risk David Bishop, Master's Degree Candidate Thursday, April 5th, 8:15pm - 8:55pm Master's Degree Presentation
Cyber-Bullying and Sexting Protocols In Our Schools With Appropriate Consequences Detective Richard Wistocki (Ret.) Thursday, April 5th, 8:15pm - 9:15pm SANS@Night
Friday, April 6
Session Speaker Time Type
Today's Mobility and Cloud Cybersecurity Mission Loay Oweis, Federal Mobility Specialist Friday, April 6th, 12:30pm - 1:15pm Lunch and Learn
ICS Down...It's go time! Jason DelyTechnical Director, ICS and Critical Infrastructure Friday, April 6th, 12:30pm - 1:15pm Lunch and Learn
"The Emperor's New Tools" High Spending but low 'Intelligence Yield' In Cyber Security Tools Has Still Left us Feeling Naked John Smith, Senior Sales Engineer Friday, April 6th, 12:30pm - 1:15pm Lunch and Learn
Saturday, April 7
Session Speaker Time Type
Speaking to the Board on Cybersecurity Lance Spitzner Saturday, April 7th, 7:15pm - 8:15pm SANS@Night
Securing Your Kids Lance Spitzner Saturday, April 7th, 8:15pm - 9:15pm SANS@Night