As commercial adoption of cloud technologies continues, cloud-focused malware campaigns have continued to evolve. After observing a shift away from cloud compute and on to serverless environments, containers and other managed services, it's clear that the cloud remains an increasingly attractive target for malware developers pursuing a variety of objectives. Matt will provide technical insight into a new group of contemporary cloud-focused malware campaigns. Specifically, Matt will focus on those that have diversified from the common objective of cryptojacking, and will discuss TTPs unique to these malware families. Attendees can expect to gain knowledge of how these campaigns achieve initial access and evade host and network-based detection mechanisms in cloud environments. Matt will also discuss detection opportunities for defenders, along with new trends and observations from his experience working in cloud threat intelligence.

View upcoming Summits: http://www.sans.org/u/DuS

SANS Cyber Threat Intelligence Summit 2024
Beyond Cryptojacking: Studying Contemporary Malware in the Cloud
Matt Muir, Threat Intelligence Researcher, Cado Security