Behind Enemy Lines: Engaging and Disrupting Ransomware Web Panel
Vangelis Stykas
DEF CON 32 Main Stage · Day 1 · Main Stage
This talk, "Behind Enemy Lines: Engaging and Disrupting Ransomware Web Panel," delivered by Vangelis Stykas at DEF CON 32, offers a unique perspective on the ongoing battle against ransomware. Rather than focusing solely on prevention or post-incident recovery, Stykas delves into the proactive, often risky, realm of directly interacting with ransomware groups through their victim-facing web panels. This approach aims to understand their operations, gather intelligence, and identify potential vulnerabilities that could lead to disruption. The speaker explores the motivations behind such engagement, the technical challenges involved, and the ethical considerations that arise when venturing into the adversaries' digital strongholds.
AI review
This talk proposes a direct, offensive approach to ransomware, moving beyond traditional reactive defenses to actively engage with ransomware groups via their victim web panels. It promises to deliver practical insights into gathering intelligence, understanding adversary operations, and identifying vulnerabilities for disruption. This methodology offers a novel and potentially high-impact strategy for incident responders and threat intelligence analysts, providing actionable signal by getting inside the enemy's operational infrastructure. This is the kind of proactive, risky research that…