APTs Transtion to the Cloud

Migration to the cloud brings new challenges and with news stories on cloud breaches becoming a daily occurrence, it’s easy to understand why cloud security has become a critical issue. These difficulties have not escaped attackers, and they are transitioning faster than we can adapt.

The flexibility and low cost have made transiting workloads to the cloud increasingly attractive to companies. However, migration to the cloud brings new challenges, from new vulnerabilities to a constantly changing attack surface. With news stories on cloud breaches becoming a daily occurrence, it’s easy to understand why cloud security has become a critical issue. Not only must companies adapt to the constantly changing nature of the cloud, but with 90% of cloud workloads running on Linux, companies must also adjust their security practices to a new operating system.

Not only do companies have to successfully defend themselves from hundreds, if not thousands, of attacks. They now face the need to understand which of the dozens of cloud security solutions can best be implemented to keep attackers out. The difficulties of cloud security have not escaped cybercriminals, and their attacks are transitioning faster than traditional security solutions can adapt.

In this presentation, Nicole Fishbein and Ell Marquez will discuss how attackers now invest more time and effort into creating malware tailored to Linux and cloud environments. And, of course, the solution to how companies can adjust their security posture to address cloud environments’ continuously changing threat landscape.

Nicole Fishbein has spent the last six years entrenched in the security world as part of the IDF and currently discovering new malware as a part of the Intezer research team. Nicole has been part of research that led to discovering previously undetected malware such as Doki and ties between Roke Group and the evolution of tools and techniques to target Linux-based cloud environments.

Ell Marquez is a proud advocate of Hacking Is Not a crime and has traveled the world for five years, educating security practitioners on subjects from on-prem infrastructure to the cloud and everything in between. As part of her journey in 2021, Ell transitioned to training about new threats in Linux and cloud-based environments and newly discovered malware such as ElectroRAT, HabitsRAT, and Doki.