Sort by:  

Conference:  Defcon 31
Authors: Cooper Quintin Senior Staff Technologist – EFF

For the last 6 years my colleagues and I have been tracking the activities of the cyber-mercenaries we call Dark Caracal. In this time we have observed them make a number of hilarious mistakes which have allowed us to gain crucial insights into their activities and victims. In this talk we will discuss the story of Dark Caracal, the mistakes they have made, and how they have managed to remain effective despite quite possibly being the dumbest APT to ever exist.
Authors: Miguel Calles

tldr - powered by Generative AI

The presentation discusses the importance of implementing security measures in cloud computing, particularly in serverless technologies, to reduce costs and ensure data privacy.
  • Leverage temporary credentials and short-lived policies to mitigate risks
  • Monitor AWS service outages and failures to prevent data loss
  • Implement multi-region and multi-cloud designs to ensure application availability
  • Use local storage and session storage to store data in case of API call failures
  • Perform cost engineering to optimize application costs and reduce total cost to collect for toll operators
  • Implement proper cloud security principles to ensure data privacy and security
  • Resources for learning about serverless and serverless security include blogs, books, and cloud provider documentation