A Security Professional's Guide to Malicious Packages
This presentation is designed for software developers, engineers, and DevOps/build teams managing dependencies and CI/CD; security professionals focused on AppSec and supply chain risk; technology managers and team leads; and threat analysts seeking practical ways to understand and mitigate risks in open source ecosystems and software supply chains.
Turning the Backpage: Combating Human Trafficking with Threat Intelligence
This RSA session, co-presented with Hande Guven, shows that human trafficking occurs not only on the dark web. Public, open sources (such as classified-ad platforms) can yield actionable indicators. We share a proof-of-concept study demonstrating how first responders can monitor selected sources to generate threat leads, initiate investigations, build cases, and support survivors.
Conference: RSA Conference · 2023