Next Meetup

Nov Meetup - "What Happens When the OS is Used as a Weapon"
AGENDA: • Food, Drinks & Networking (20mins) (bring your business card) • Introduction & Announcement (10mins) • "What happens when the OS is used as a weapon – Gaining visibility over File-less attacks & LOLbins" by Alberto Pelliccione (1hr 15mins) ABSTRACT WHAT HAPPENS WHEN THE OS IS USED AS A WEAPON – GAINING VISIBILITY OVER FILE-LESS ATTACKS & LOLBINS From organised crimes to state-sponsored threat actors, file-less attacks have been gaining momentum and they have been stressing the defence capabilities of both governments and enterprises at large. With these mounting challenges, a new threat has also started to emerge: dubbed LOLBins. The attack takes advantage of normal OS components, abusing them to download or execute external content while bypassing whitelisting solutions and anti-virus software. What are the best practices to gain visibility over these new families of attacks and how to detect them early? We will analyse several real-life scenarios to gain a deeper understanding of this emerging family of threats and to understand how to enact an appropriate threat hunting and response process. KEY TAKEAWAYS 1) Recognising a fileless attack 2) Understanding how fileless attacks work and their application 3) Gaining visibility on fileless attack 4) Taking steps to overcome/contain/remediate fileless attacks BIO ALBERTO PELLICCIONE has been active in the field of malware analysis since 1998. He's been a cybersecurity trainer for governmental institutions and a researcher at the National Council of Research on Artificial Intelligence and Autonomous Collaborative Agents. In 2008, Alberto moved on to the intelligence sector, where he led a team of high profile cyber security experts to develop attack tools, used by governmental agencies worldwide to conduct cyber intelligence operations. Alberto is the founder and CEO at ReaQta since 2014, a leading provider of A.I. Threat Response platform and security services capable of addressing the most advanced and sophisticated endpoint threats. THANK YOU! VENUE SPONSOR: ReaQta FOOD SPONSOR: ReaQta

Plug-in@Blk71

71 Ayer Rajah Crescent · #02-18

Upcoming Meetups

Past Meetups (25)

What we're about

Division Zero (Div0) (by Edgis) is a Singapore cybersecurity community group. Div0 is an open, inclusive, and completely volunteer-driven community. The mission of Div0 is to promote a vibrant infosec community in Singapore. We do so by providing a platform for members of the community to meet, learn with peers, and contribute. Activities include free special conference nights, monthly meetups, workshops, hackathons, etc.

Members (1,063)

Photos (60)

Find us also at