Spænd ben for statsstøttede cyber-kriminelle – AI er næste udfordring

Dato:
28/4 2022
Sted:
Pris:
0 kr / 2.495 kr.

I anledning af den europæiske cybersikkerheds dag afholder vi denne konference om AI og cybersikkerhed.

Her kan du høre mere om status på cyberkriminelles brug af AI, fordele og ulemper ved brug af AI, den fælleseuropæiske lovgivning på området, om etiske dilemmaer ved brug af AI og ikke mindst om, hvad vi kan forvente af udvikling på området.

Kunstig intelligens (AI) er ikke kun et stærkt redskab til at advare om malware, bekæmpe bedrageri og forbedre forretningsgange. Cyberkriminelle har også opdaget fordelene i at bruge AI eller machine learning til at optimere effekten af deres forhavender.

I slutningen af 2021 vedtog EU en forordning om kunstig intelligens (KOM (2021) 206). Den tager de første skridt til at sikre ensartede regler for udvikling af AI og sikre, at udviklingen sker i respekt for de grundlæggende rettigheder og borgernes sikkerhed.

Konferencen finder sted på Eksperimentariet i Hellerup.


Eventet afholdes på engelsk.

Se program

Program:


08:45
Welcome and opening remarks
Andrew Lee
Oplægsholder:
Andrew Lee
Director of Government Affairs
ESET

08:50
Boogie down with Rook ransomware - a case study
This presentation focuses on an incident response that we conducted for a customer. It is a case study that looks at the technical parts of the malware, the intrusion of the network and exfiltration of data, launching the ransomware and events that followed.

Rook is based on the leaked Babuk ransomware code that was posted to a Russian underground forum in September 2021.

This is a step-by-step case study into a real-life incident response event and the days that followed after the attack.
Peter Kruse
Keynote:
Peter Kruse
CISO
Clever

Peter Kruse er CISO hos Clever. Tidligere har han stiftet CSIS Security Group, som er en privatejet dansk virksomhed. Som noget ganske sjældent besidder Peter Kruse en dybtgående teknisk forståelse for malware kombineret med påskønnelse for og viden om forretningsbehov. Peter har en lang historie med aktiv deltagelse i lukkede IT-sikkerhedsfællesskaber, og har stærke forbindelser blandt antivirus,- og banksektorerne såvel som blandt retshåndhævende myndigheder og højere uddannelsesinstitutioner. Peter er som den eneste i Danmark medlem af den højtrespekterede CARO (Computer Antivirus Research Organisation). En optagelse, som udspringer fra hans baggrund i antivirus branchen, og dedikerede analyse af malware.


09:20
Live Q&A

09:35
The war in Ukraine and cyber: what we’ve seen, what we haven’t and what to expect
Arthur de Liedekerke
Oplægsholder:
Arthur de Liedekerke
Project Manager
Rasmussen Global

Arthur de Liedekerke is a Project Manager at political advisory Rasmussen Global and a non-resident fellow at the Institute for Security Policy at Kiel University (ISPK). He has previous experience advising senior officials in the French Cyber Command and the institutions of the European Union (Commission and Parliament) on security and defence matters. He holds two masters’ degrees – in international relations from the University of Maastricht and in geopolitics from King’s College London


09:55
Live Q&A

10:10
How APT groups have turned Ukraine into a cyber‑battlefield
With the brutal escalation of the war against Ukraine, we take a closer look at the ‘cyber’ part of it. What has been happening in Ukraine? Could the cyberwar spill over to other European countries? Should users be worried? Join us to learn about the most important cyberattacks related to the armed conflict – in the past weeks, as well as in the past eight years.
Robert Lipovsky
Oplægsholder:
Robert Lipovsky
Principal Threat Intelligence Researcher
ESET

Robert Lipovsky is a Principal Threat Intelligence Researcher for ESET, with 15 years’ experience in cybersecurity and a broad spectrum of expertise covering targeted APTs, crimeware, as well as vulnerability research. He is responsible for threat intelligence and malware analysis and leads the Malware Research Team at ESET headquarters in Bratislava. He is a regular speaker at security conferences, including RSA Conference, Black Hat, Virus Bulletin, BlueHat, and MITRE ATT&CKcon. He also teaches reverse engineering at the Slovak University of Technology – his alma mater – and at Comenius University. When not bound to a keyboard, he enjoys traveling, playing guitar and flying single-engine airplanes.


10:40
Live Q&A

10:55
Coffee break

11:15
The European Union Agency for Cybersecurity (ENISA) Efforts on AI Cybersecurity
Emerging technologies, such as AI are in the epicentre of the digital evolution. While they bring numerous benefits they also bring many risks that need to be addressed to ensure a secure and trustworthy environment. In its role as the Union’s agency dedicated to achieving a high comment level of cybersecurity across Europe, ENISA has been actively working for the last few years on mapping the AI cybersecurity ecosystem and provding security recommendations for the forseen challenges.
Monika Adamczyk
Oplægsholder:
Monika Adamczyk
Cybersecurity Expert
ENISA

Monika Adamczyk works as a Cybersecurity Expert at the European Unit Agency for Cybersecurity (ENISA), where she focuses on cybersecurity and privacy of emerging technologies. She currently leads 2 projects on Artificial Intelligence. Prior to joining ENISA, she worked in Poland as a data protection expert and a DPO and contributed to the work of the European Data Protection Board Technology Subgroup. Her professional experience includes also leading multiple IT projects at the International Atomic Energy Agency in Austria and delivering technical solutions to many commercial organizations and the US federal government.


11:45
Live Q&A

12:00
SparrowDoor: A new variant
NCSC Malware Team

12:30
Live Q&A

12:45
Lunch

14:00
Will machine learning improve or disrupt the cybersecurity equilibrium?
While the idea of artificial intelligence and machine learning have been influencing various fields for decades now, their full transformative potential is yet to be realized. ML-based technologies increasingly help fight large-scale fraud, evaluate and optimize business processes, improve testing procedures and develop new solutions to existing problems. We, at ESET, recognized its potential early on and employed it to improve malware detection over 20 years ago. To this day, this symbiosis continues, various machine-learning technologies being an integral part of the ESETs protective layers. Like most innovations, however, even machine learning has drawbacks and limitations. Unfortunately, technological advances are not exclusively available to cybersecurity defenders. Cybercriminals are aware of the new prospects too and do not hesitate to utilize ML-based technologies to make their malicious code and activities more efficient. The question for the future remains, will the pros of machine learning outweigh the cons or will the technology lead to major disruption and deterioration of the cybersecurity equilibrium.
Juraj Jánošík
Oplægsholder:
Juraj Jánošík
Malware Analyst,
ESET

Juraj Jánošík joined ESET in 2008 as a Malware Analyst, he holds a bachelor’s degree in Applied informatics and a master’s degree in Robotics, both from the Slovak University of Technology. Currently, he is the leader of ESET's Automated Threat Detection and Machine Learning section. He was a member of several international working groups focusing on botnet eradication (e.g. Dorkbot, Gamarue, 3ve). He also presented at several international private and public conferences including RSA, MWC and CARO.


14:30
Live Q&A

14:45
Zooming in on the current threatscape
Hundreds of billions of password guesses aiming to break the protection of RDP remote access, the resurrection of Emotet, a threat described by Europol as the “most dangerous malware in the world” and over 400 % increase in Android banking malware year-over-year: those are just a few of the trends seen by ESET in the last months of 2021. And that is on top of the cyberespionage activity of groups such as The Dukes, OilRig, and others. Join our talk and find out what were the latest threats and trends detected by ESET.
Ondrej Kubovič
Oplægsholder:
Ondrej Kubovič
Security Awareness Specialist
ESET

Ondrej Kubovic joined ESET as Security Awareness Specialist in 2015 and has been presenting findings of ESET research in European media as well as at various international and regional IT security conferences. He had previously worked as a journalist focusing on security and cybersecurity topics.


15:15
Live Q&A

15:30
Conference closing
Andrew Lee
Oplægsholder:
Andrew Lee
Director of Government Affairs
ESET