Are you interested in understanding how financially motivated threat actors infiltrate Amazon Web Services ( AWS ) to steal credentials, and intellectual property and perform Cryptojacking attacks? Great! this webinar is for you! In this engaging session, presented by the DevSecCon Italy’s chapter leader, Alessando Braccio and Alessandro Brucato, Senior Threat Engineer, delve into the relentless SCARLETEEL operation, first unearthed by the Sysdig Threat Research Team in February 2023.
SCARLETEEL stands as a tenacious adversary, continually refining its strategies to successfully siphon sensitive data and intellectual assets from AWS cloud environments. We will immerse ourselves in real-world instances of how this operation infiltrated an unsuspecting victim’s AWS account through a compromised Kubernetes container.
Furthermore, they explore the security landscape surrounding various AWS technologies such as Elastic Compute Cloud (EC2), Identity and Access Management (IAM), Lambda serverless functions, and their Terraform Infrastructure as Code (IaC) modules. For each technology, they provide invaluable defensive insights to fortify your defenses and thwart future attacks of a similar nature.
Join the community!
If you haven’t joined the Discord community, please do so! You can find us on Discord at: https://devseccon.io/discordcommunity
**This event was held in Italian**