He holds an MSc from Erasmus University and several commercial cyber security certifications such as CISSP, GICSP, GCTI, GXPN, GRID. Kris has worked in various technical positions based from the US, UK and Afghanistan. His research focuses on cyber-criminal use of Bitcoin. This information was revealed to the public when Jack Cable, a member of cybersecurity-focused Krebs Stamos Group, said that an affiliate of the ransomware gang boasted that they could get the demand reduced to the later 50 million USD. He is a part-time PhD candidate at Delft University of Technology. Krebs is the German and Danish word for 'crab' and 'cancer' (in German, both the zodiac sign and the disease in Danish the latter is 'kræft'). Kris Oosthoek is Cyber Threat Intelligence lead with the Dutch government. in computer science from Stanford University, and does research in election security, computer security, and mis/disinformation. Jack has worked on the Cybersecurity and Infrastructure Security Agency's election security team and at the Defense Digital Service. He most recently was a security architect at the Krebs Stamos Group. Jack Cable is a hacker who works at the intersection of cybersecurity and public policy. Although it is relatively easy to identify choke points in commodity ransomware payment activity, it is more difficult to do the same for RaaS. We notice that there are striking differences between the two markets in the way that cryptocurrency resources are utilized, revenue per transaction, and ransom laundering efficiency. Cybersecurity and Infrastructure Security Agency worker, has started a ransomware. Our analysis shows that there are two parallel ransomware criminal markets: commodity ransomware and Ransomware as a Service (RaaS). Jack Cable, a security architect at Krebs Stamos group, and a former U.S. Leveraging the transparent nature of Bitcoin, the cryptocurrency used for most ransomware payments, we characterize the evolving ransomware criminal structure and ransom laundering strategies. How it works: Ransomwhere is an 'open, crowdsourced ransomware payment tracker' launched by Jack Cable, a former government cybersecurity expert who now works as a security architect for Krebs Stamos. With Ransomwhere, we have gathered 13.5k ransom payments to more than 87 ransomware criminal actors with total payments of more than $101 million. Why it matters: While ransomware is clearly a growing problem, there hasn't been a good way to keep tabs on how much is being paid, and to whom. We report on our experience operating Ransomwhere, an open crowdsourced ransomware payment tracker to collect information from victims of ransomware attacks. Collecting and analyzing ransomware data is an important step towards understanding the spread of ransomware and designing effective defense and mitigation mechanisms. They have made headlines in recent years by threatening the operation of governments, critical infrastructure, and corporations. Ransomware attacks are among the most severe cyber threats. US investigators have recovered millions in cryptocurrency they say was paid in ransom to hackers whose attack prompted the shutdown of the key East Coast pipeline last month, the Justice. At Stanford, Jack is a research assistant with the Stanford Internet Observatory and Stanford Empirical Security Research Group and launched Stanford's bug bounty program, one of the first in higher education.Jack Cable and Kris Oosthoek Apat 11:00 AM on Zoom / Soda Hall Jack was named one of Time Magazine's 25 most influential teens for 2018. After placing first in the Hack the Air Force challenge, Jack began working at the Pentagon's Defense Digital Service. Jack is a top-ranked bug bounty hacker, having identified over 350 vulnerabilities in companies including Google, Facebook, Uber, Yahoo, and the US Department of Defense. Jack formerly served as an Election Security Technical Advisor at CISA, where he led the development and deployment of Crossfeed, a pilot to scan election assets nationwide. Jack Cable is a security researcher and student at Stanford University, currently working as a security architect at Krebs Stamos Group. Tod highlights some of the many things Discourse is doing right with its security program. Stick around for our Rapid Rundown, where Tod and Jen talk about a remote code execution vulnerability that open-source forum provider Discourse experienced recently, which CISA released a notification about over the weekend. They chat about how Cable came up with the idea, the role of cryptocurrency in tracking these payments, and how better data sharing can help combat the surge in ransomware attacks. In this episode of Security Nation, Jen and Tod chat with Jack Cable, security architect at the Krebs Stamos Group, about Ransomwhere, a crowdsourced ransomware payment tracker.
0 Comments
Leave a Reply. |