当前位置:首页 > 报告详情

妈妈我需要花更多时间在社交媒体上!.pdf

上传人: 可*** 编号:991901 2025-12-07 29页 11.13MB

1、TLP:WHITEBut Mom,I Need To Spend More Time on Social Media!Bridging CTI and Fraud:UnderstandingSocial Media Cyber Threat Landscape and BeyondDaniel Widya Suryanata&Jurgen VisserTLP:WHITETLP:WHITESPEAKERSDaniel Widya SuryanataDaniel has over 7 years of experience in the cybersecurity industry,in whic

2、h he focused on the areas of incident response,security monitoring,and threat intelligence.He is now leading a team of incident responders and CTI analysts.Daniel graduated from Carnegie Mellon University and holds various certifications.Jurgen VisserJurgen(GCTI,CTIA,CRTIA)has 14 years of experience

3、,focused the last few years on Cyber threat intelligence and has published several CTI related articles on Slide 2TLP:WHITEBOTTOM LINE UP FRONT(BLUF)Slide 3WHAT IS THIS ABOUT?Cyber Threat Intelligence covering the fraud domain in South East Asia(Indonesia).CTI CMM:ad-hoc level(CTI level 1)automation

4、 and cross-team collaboration(CTI level 2).CHALLENGESSocial collection is hard and costlySocial Media platform brand protection is limited and challenging to consistently manageTHREAT ACTOR:FRAUDSTERSTHREAT 1:Fake Customer ServiceTHREAT 2:Social Media Comment HijackingTHREAT 3:Google Maps Business F

5、raudTHREAT 4:Google Adwords hijackingTHREAT 5:Fake Job PostingsKEY TAKEAWAY-CTI PROGRAMEstablish a baselineConsistent threat huntingWork with social media platformsSet up takedown functionMonitor new fake accounts proactivelyClose the loopHOW DID WE GET HERE?Bottom up approach for PIRsStakeholder ma

6、nagement with the fraud/brand protection teamTLP:WHITEWhy this talk?Slide 4Key Insight:The“garden”is a open area that cannot be fully controlled,detect early,degrade threat actors efforts early,before an infestation occurs.Detect early,degrade threat actors earlyFighting fraud on the internet is lik

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
本文主要讨论了东南亚(尤其是印尼)社交媒体网络中存在的欺诈威胁,以及如何通过网络安全威胁情报(CTI)来应对这些威胁。关键点如下: 1. **威胁类型**:包括假冒客服、社交媒体评论劫持、谷歌地图商家欺诈、谷歌广告词劫持和虚假工作发布等。 2. **挑战**:社交媒体信息收集难度大、成本高;品牌保护有限,管理不一致。 3. **CTI的角色**:具有相关收集和分析能力,能深入威胁狩猎和检测,与内部利益相关者(如欺诈/品牌保护团队)紧密合作。 4. **应对措施**:建立基线,持续威胁狩猎,与社交媒体平台合作,设置下线功能,主动监控新假冒账户,并闭环处理。 5. **合作与成熟度**:采用自下而上的方法与利益相关者合作,推动CTI在欺诈领域的成熟度模型从临时性(CTI1)向自动化和团队协作(CTI2)发展。 引用的核心数据包括:“Tiktok在东南亚拥有最大的用户群”,“由于该地区的发展性质,其数字素养显著较低,暴露了重大漏洞”。
"东南亚网络诈骗揭秘" CTI如何助力" "CTI在品牌保护中的应用"
客服
商务合作
小程序
服务号
折叠