Hyperscalers and Fincrime: A Match Made in the Cloud

Zack Allen

This talk is a highlight of several real-world cloud security incidents that Zack and his research and detection team at Datadog has observed in open-source, threat sharing communities and within our own telemetry. Hyperscalers, which by Wall Street’s definition, include AWS, Azure & GCP, present opportunities for crime whether you are a low-level, commodity hacker or a ransomware gang. In this talk, we will review several interesting cases, provide a model for conference goers, “the 4Cs”, to navigate attacks in and out of the cloud, and note the evolution of TTPs from basic cryptomining to large scale exfiltration and ransom.