Threat Intelligence Briefing for Education and Digital Risk Protection for Virtual School Environments

CrowdStrike Threat Intelligence Briefing:

Wizard Spider, made famous by their commodity banking malware “TrickBot” and “Ryuk”, is a notorious threat actor that conducts high impact attacks across a variety of industry verticals and sectors. We’ll start off with an overview of the current e-crime landscape and emerging trends, and the begin to breakdown the tactics, techniques, and procedures that Wizard Spider leverages as they conduct operations across the globe.

Focus will be on the TrickBot, Ryuk, and AnchorDNS malware families, providing high-level overviews of their functionality and deployment. A victimology case study will provide a deep-dive into a real world scenario where both the failures and lessons learned will be on display. This talk will conclude with defensive strategies to help mitigate the threat, as well as, an interactive question and answer session.

SafeGuard Cyber:

The COVID-19 pandemic has forced schools to rapidly virtualize through platforms like Slack and Microsoft Teams. With this virtualization comes the need for greater visibility to stop malicious links or attachments from spreading, protect students from compromised accounts posing as trust individuals, and monitoring for cyberbullying or harassment to ensure the virtual schoolyard is just as safe and productive as the one students have had to leave behind.