Preventing One of The Largest Supply-Chain Attacks in History

Name: Preventing One of The Largest Supply-Chain Attacks in History
Description: Security researcher Maksim Shudrak delivered one of DEF CON 33's most concrete supply-chain attack analyses by doing something no prior researcher had done at scale: he actually claimed 5,155 abandone

Maksim Shudrak

DEF CON 33 · Day 1 · Main Stage

Security researcher Maksim Shudrak delivered one of DEF CON 33's most concrete supply-chain attack analyses by doing something no prior researcher had done at scale: he actually claimed 5,155 abandone

AI review

Maksim Shudrak claimed 5,155 abandoned AWS S3 buckets across three corpus categories (GitHub references, Maven/PyPI packages, active malware), logged incoming traffic for five days, and used an LLM-assisted triage pipeline to identify ~500 high-sensitivity buckets. The resulting exposure radius reached 28,000 hosts across 158 countries, 134 organizations, and 25 government networks. Total attacker cost: approximately $20. Attack classes demonstrated include Windows executable delivery, pickle-format ML model RCE, package install-time binary fetching, and live malware C2 payload replacement.

Watch on YouTube