当网络犯罪分子犯错时 - OPSEC Oopsies 和 Epic Falls.pdf

1、When Cybercriminals Goof:OPSEC Oopsies and Epic Falls Will Thomas FOR589 Co-author and Instructor,SANS Institute CTI Researcher&Threat Hunter,Equinix Co-founder,Curated Intelligence$whoami Spent 8 Years in Cybersecurity Passionate about Cybercrime Security Research blog:https:/ Often read about the

2、darknet,malware,ransomware,and other cybercriminals Always curious to learn about how we can stop them Loves to help Law EnforcementOperational Security(OPSEC)Someone with great OPSEC usually Who likes to do it like its their hobby Who must do it for their safety Many people like to balance keeping

3、their data and systems secure while also maintaining a convenient life.OPSEC for allUsing a password managerUsing multi-factor security(MFA)apps or tokensKeeping systems updated with the latest patchesUsing antivirus software and built-in OS securityAvoid oversharing on social media set your account

4、s to privateBeing aware of scams,watch out for phishing links or attachments and malicious websites https:/ the Extra MileBad OPSEC leads to ArrestsPizza BoxesUK OSINTPiccadilly lineLondonOvergroundElizabeth lineThe DLRThe London Undergrounds Seat CoversLook for them in your targets picturesEach pub

5、s carpets are uniqueLook for the unique patterns of the carpets in their picturesWhat you may expect:Cybercriminal OPSEC Online Fake Personas and Stolen Identities Using privacy-focused Linux distributions(like TAILS,Whonix)Using an encrypted messaging app(like TOX)Burner Phones/Burner Laptops No-Lo

6、g VPNs CryptocurrencyDeanonymization BountiesUnleash The Door KickersHOW YOU CAN DO ITSilk Road Admin ArrestedForum Post His account was the first to post a link advertising Silk RoadLeaked Email Address The same forum account posted his email address: How“Dread Pirate Roberts”was uncovered:AlphaBay