Save $200 on Cyber Security Training at SANS Miami 2018. Ends 12/27.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Elevating the Fraud in Point of Sale (PoS) to Another Level

  • Monday, May 15th, 2017 at 1:00 PM EDT (17:00:00 UTC)
  • Thiago Bordini
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!

Overview

The presentation is the result of an investigation process involving fraud in the Point of Sale (PoS) systems, which in a single establishment in Brazil caused a loss of more than R$ 1.5M or approximated U$ 0.5M. The fraud involved the use of various technological devices such as VPNs, encryption, C & C server remote, automated scripts, anti-forensics techniques, building a specific device plug and play for fraud, and obviously, a lot of audacity on the part of the fraudsters.   

During the presentation, Thiago will show all the vulnerabilities exploited by fraudsters, as well as other possible attacks that could be carried out using the same technique, where depending on the establishment, the fraudsters could easily lead to financial losses greater than the case of Target 2013 and HomeDepot in 2014. The complete mapping of the work was the result of a long investigation using cyber intelligence and counterintelligence techniques in order to be able to identify the suspects of illegal practices. The result of over 6 months of private research will be presented in an unprecedented manner so that it can be demonstrated throughout the investigative process used, strategies and technologies used, all with the purpose of identifying the Tactics, Techniques and Procedures (TTP) fraudsters use to contain or eliminate the effectiveness of the attack.

To learn more on this topic, attend the 10th annual SANS Digital Forensics & Incident Response (DFIR) Summit & Training. This training event brings together the most influential group of experts, the highest quality training, and the greatest industry networking opportunities in one place. Over the course of this eight-day training event, you'll enjoy:

  • Highly technical digital forensics and incident response presentations from the industry's top practitioners during the two-day Summit
  • Nine SANS DFIR courses to choose from to advance your training, build your arsenal of defenses, and learn how to better protect your organization
  • The opportunity to network with fellow attendees at receptions and community-building events
  • A DFIR NetWars tournament to sharpen your skills and solve incident-related challenges

Speaker Bio

Thiago Bordini

Thiago Bordini is the Director of Cyber Intelligence for NS Prevention and independent researcher. Speaker at many events like EkoParty, H2HC, BSides, YSTS, CNASI, SegInfo, ValeSec among others. Professor in the Postgraduate Course in Computer Forensics at Mackenzie University. Founder of StaySafe Podcast and member of the Cloud Security Alliance Brazil (CSA).

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.