Wednesday 28 September 2022, 12:00 - 12:30, Red room
Cristina Vatamanu (Bitdefender)
The concept of threat intelligence has evolved a lot over time, together with the dynamic of the cyber threat landscape. Starting from simple indicators of compromise, comprehensive threat intelligence evolved into a critical component for organizations’ security strategy as cyber attacks grew more and more sophisticated. Threat intelligence lets security analysts prioritize incidents based on their potential impact on the business, make data-backed decisions on actions for mitigation, improve operations, identify risks for their business, and better prevent and respond to security incidents.
This presentation highlights the importance of capturing the context of an attack, to know details about the threat actors to better understand their motives, their purpose or the way they operate. Organizations can then take actions that minimize the attack surface, build better defences, and better mitigate risks. All of this is illustrated with real-life examples of forensic investigations performed by our team in the last two years.
Finally, we will offer some details about processes that the forensic team has in place to provide context on how a threat actor operates or how similar attacks can be discovered.
Cristina Vatamanu is Manager of the Cyber Threat Intelligence Lab at Bitdefender. She has more than 10 years of experience in forensic work, being involved in cybercrime investigations and threat research. Cristina leads the cybercrime investigation team in Romania with highly skilled researchers and forensic engineers. This unit handles sensitive cases of targeted attacks, working side-by-side with law enforcement agencies for gathering evidences against cybercriminal groups. She graduated in computer sciences and has a Ph.D. in machine learning used in hybrid models dedicated in detecting malicious programs.