Santiago Pontiroli

Security Researcher, Global Research & Analysis Team

Santiago Pontiroli joined Kaspersky's Global Research and Analysis Team (GReAT) as a security researcher in 2013. His principal responsibilities include the analysis and investigation of security threats in the Latin American region, the development of automatization tools, reverse engineering of programs with malicious code and creating analysis reports derived from threat intelligence studies. His expertise includes the analysis of gaming trends and threats, the evolution of the cryptocurrency sector and implementation of blockchain technologies. Santiago regularly trains executives in topics such as threat intelligence, YARA, and advanced malware analysis. He has been quoted in industry publications across Latin America and has participated as a notable speaker in industry conferences worldwide, including Virus Bulletin, BSides New York and Chile, Kaspersky Security Analyst Summit (SAS) and Nuit du Hack, among others. Santiago holds degrees in systems engineering and systems analysis from the Universidad Tecnológica Nacional F.R.L.P in Buenos Aires, Argentina.

@spontiroli

Reports

In this report Kaspersky researchers provide an analysis of the previously unknown HrServ web shell, which exhibits both APT and crimeware features and has likely been active since 2021.

Asian APT groups target various organizations from a multitude of regions and industries. We created this report to provide the cybersecurity community with the best-prepared intelligence data to effectively counteract Asian APT groups.

We unveil a Lazarus campaign exploiting security company products and examine its intricate connections with other campaigns

How Kaspersky researchers obtained all stages of the Operation Triangulation campaign targeting iPhones and iPads, including zero-day exploits, validators, TriangleDB implant and additional modules.

Santiago Pontiroli

The rise of .NET and Powershell malware

The cake is a lie! Uncovering the secret world of malware-like cheats in video games

A nightmare on malware street

“All your creds are belong to us”

BSides NYC, a volunteer organized event put on by and for the community

Publications

Cyberthreats to financial organizations in 2022

The cake is a lie! Uncovering the secret world of malware-like cheats in video games

BSides NYC, a volunteer organized event put on by and for the community

XPan, I am your father

Kaspersky Security Bulletin 2016. The ransomware revolution

The first BSides Latin America, this time in Sao Paulo

“All your creds are belong to us”

The rise of .NET and Powershell malware

Coinvault, are we reaching the end of the nightmare?

Our Fifth Latin American Security Analysts Summit in Santiago de Chile

One night to hack in Paris

Challenging CoinVault – it’s time to free those files

Reports

HrServ – Previously unknown web shell used in APT attack

Modern Asian APT groups’ tactics, techniques and procedures (TTPs)

A cascade of compromise: unveiling Lazarus’ new campaign

How to catch a wild triangle

Subscribe to our weekly e-mails