Abstract

Cloud services have emerged as the preferred attack vector of some of the most dangerous and innovative cloud malware exploits over the past six months. Why? Because many organizations don't inspect their cloud traffic for malware, and the same cloud service functionality that dramatically increases productivity (sync, share, etc.) also provides malicious actors with the perfect medium for faster delivery of malware payloads to more targets.

Presented by

Bio

Sean Hittel is a Threat Detection Engineer for Netskope who has been working in threat research and attack containment for the entirety of his career. His areas of specialty include attack operation, and detection evasion evolution, as well as applied machine learning. Mr. Hittel is fluent in Python and JavaScript, using a PostgreSQL or SQL Server back end, and he also enjoys rapid prototyping and customer-focused solutions. He is passionate about business process including appropriate applications of Lean, Kanban, and broader Agile.

Career highlights for Mr. Hittel include developing both a honeypot-based IPS signature generation and evasion triage system optimized for browser attacks as well as RPC style exploits, and a toolchain for a high release frequency machine learning-based detection engine that shipped detections to about 200 million endpoints.