Inside the Hacker's Playbook - How We Stopped a €20M Ransomware Payout - Joseph Carson
Disobey 2026 · Main Stage
Joseph Carson, a seasoned security researcher and Chief Security Evangelist at Sigura, delivered a compelling talk at Disobey, taking the audience on an immersive journey through a real-world ransomware incident. Titled "Inside the Hacker's Playbook - How We Stopped a €20M Ransomware Payout," Carson meticulously dissected an attack that brought an organization to a complete standstill, detailing the attacker's tactics, techniques, and procedures (TTPs) from initial compromise to the brink of a massive ransom payment. The talk not only highlighted the technical intricacies of the attack but also the profound human impact and organizational failures that often precede such catastrophic events.
AI review
A competent, well-structured incident retrospective with real permission to share genuine TTPs, actual tooling, and a named RaaS operation — that's more than most IR war stories deliver. Carson clearly did the work himself, the case is real, and the demo adds tangible value. But the technical depth stays firmly in 'practitioner awareness' territory rather than advancing anything a seasoned defender doesn't already know.