2FA-Enabled Fraud: Dissecting Operation High Roller

DerbyCon 2.0 - The Reunion

Presented by: Dave Marcus
Date: Friday September 28, 2012
Time: 18:00 - 18:50
Location: Track 3
Track: Fix Me

What would happen if you had over 60 servers processing thousands of theft attempts from high-value accounts and high net-worth indiciduals? What if these servers showed an insiders level of understanding of banking transactions? What if all this fraud actually did not look like fraud? What if this system actually relied and depended upon two- factor authentication to accomplish its fraud?

Welcome to Operation High Roller: an ongoing fraud campaign that has targeted upwards of 1 Billion Euros.

This session will dissect and discuss the nastiest parts of High Roller: the web injects and the automated fraud servers we identified and analyzed during this project. Prepare to question your existing conceptions of server-side malware automation and multi-factor authentication as we explore 2FA-enabled fraud.

Dave Marcus

TBA


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats