“You sh0t the sheriff”

20 May 2011

minute read

Authors

Fabio Assolini

This week I had the chance to deliver a presentation at one of the most famous and prestigious security conference in Brazil called “You sh0t the sheriff” now in its 5th edition.

The event brought together security experts from different parts of Brazil and also some international researchers. The event has a different format, bringing together the best of all segments of the infosec world with the best in the industry, both presenting and allowing people to interact, learn, and network.

As a security company that maintains a constant eye on Brazilian threats, we participated in the event by presenting the talk: “Brazilian beaches, Brazilian breaches – how data leaks are feeding the local (cyber)crime” as part of our research and monitoring of the local cybercrime.

We have already published on Securelist some of the interesting Brazilian data leaking incidents like this and this.

Also presented in the event: Gerry Egan of Symantec, Alex Kirk of Sourcefire, Michael Smith of Akamai and some Brazilian speakers: Anchises Moraes of iDefense, Jernimo Zucco of UCS, Tony Rodrigues and Fernando Fonseca of ISSA.

… and the sheriff still lives!

Authors

Fabio Assolini

“You sh0t the sheriff”

Latest Posts

Latest Webinars

Reports

We continue to report on the APT group ToddyCat. This time, we’ll talk about traffic tunneling, constant access to a target infrastructure and data extraction from hosts.

New unattributed DuneQuixote campaign targeting entities in the Middle East employs droppers disguised as Total Commander installer and CR4T backdoor in C and Go.

In this report Kaspersky researchers provide an analysis of the previously unknown HrServ web shell, which exhibits both APT and crimeware features and has likely been active since 2021.

Asian APT groups target various organizations from a multitude of regions and industries. We created this report to provide the cybersecurity community with the best-prepared intelligence data to effectively counteract Asian APT groups.

“You sh0t the sheriff”

GReAT Ideas. Balalaika Edition

GReAT Ideas. Green Tea Edition

GReAT Ideas. Powered by SAS: malware attribution and next-gen IoT honeypots

GReAT Ideas. Powered by SAS: threat actors advance on new fronts

GReAT Ideas. Powered by SAS: threat hunting and new techniques

Large-scale SIM swap fraud

Brazilian banking Trojans meet PowerShell

SMiShing and the rise of mobile banking attacks

Beaches, carnivals and cybercrime: a look inside the Brazilian underground

Wave of VBE files leading to financial fraud

Black Hat USA 2022 and DEF CON 30

How we took part in MLSEC and (almost) won

Lyceum group reborn

Wake me up till SAS summit ends

Targeted Malware Reverse Engineering Workshop follow-up. Part 2

Latest Posts

Assessing the Y, and How, of the XZ Utils incident

ToddyCat is making holes in your infrastructure

DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware

SoumniBot: the new Android banker’s unique techniques

Latest Webinars

The Future of AI in cybersecurity: what to expect in 2024

Responding to a data breach: a step-by-step guide

2024 Advanced persistent threat predictions

Overview of modern car compromise techniques and methods of protection

Reports

ToddyCat is making holes in your infrastructure

DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware

HrServ – Previously unknown web shell used in APT attack

Modern Asian APT groups’ tactics, techniques and procedures (TTPs)

Subscribe to our weekly e-mails