Blog TruSTAR To Present Blockchain Research Tool At ShmooCon 2019

TruSTAR To Present Blockchain Research Tool At ShmooCon 2019

TruSTAR is headed to ShmooCon 2019!

As a follow-on to our blockchain research debut at Black Hat and DEF CON 2018, TruSTAR will present a second iteration of our malware attribution tool White RabbitData Science Lead Nicolas Kseib and Engineering Lead Olivia Thet will demonstrate how Bitcoin public ledger data can be leveraged to track emerging malware and ransomware campaigns. TruSTAR is the first threat intelligence platform to track Bitcoin addresses as an indicator of compromise (IOC).

As we prepare our research presentation, here’s more info about our abstract and our speakers. Make sure to check out the SchmooCon website for more event updates coming soon.

Abstract: CryptoLocker Deep-Dive - Tracking Security Threats

White Rabbit is an open source security research tool built on top of BlockSci, an open source blockchain analysis and exploration framework. In this presentation, TruSTAR will show how to leverage Bitcoin addresses associated to known ransomware campaigns and track payments made to these addresses. Our goal is to provide a tool that can act as another intelligence collection system for SOC analysts, threat hunters, malware researchers, and other defenders by leveraging Bitcoin public ledger data. This intelligence collection system allows analysts to track the activity of known ransomware and assess the impact of these campaigns by directly looking into the amount of payments received. As cryptocurrencies continue gaining traction in public markets and criminal networks, we will demonstrate why Bitcoin wallet and other cryptocurrency addresses should be added as indicators of compromise (IOCs) to the “Pyramid of Pain.”

Interested in learning more? Read our full post on the CryptoLocker use case and why we use Bitcoin addresses as an IOC.

About Our Speakers

OliviaOlivia Thet is a Fullstack Software Engineer at TruSTAR Technology, an intelligence management platform that helps organizations leverage multiple sources of threat intelligence and fuse it with historical event data to prioritize and enrich investigations. Olivia works on TruSTAR's Enclave knowledge management architecture and she's passionate about helping teams collaborate better. Before joining TruSTAR, Olivia received her B.A. in Applied Mathematics and Computer Science at UC Berkeley.



Nicolas-KsiebNicolas Kseib is the Lead Data Scientist at TruSTAR, an intelligence platform built to manage and enrich every stage of the investigative workflow. He leads the company's data science initiatives and roadmap. He is always thinking of ways to leverage analytics and machine learning to design features improving the operational efficiency of security teams. Before joining TruSTAR, Nicolas received his M.S. and Ph.D. in Mechanical Engineering from Stanford University specializing in Flow Physics and Computational Engineering.


Stories of Cyber Defense Collaboration: Trustworthy Accountability Group (TAG) Nicole Perloth’s new book, This is How They Tell Me the World Ends, details our past and troubling trajectory in cyberspace. It is a terrific and ... Read More
Box Automates Intelligence and Workflows While Reducing Manual Work Hours with TruSTAR “The fact that we can easily integrate with all of our data sources that we were pulling in externally by using TruSTAR, as well as any internal data ... Read More
LogMeIn Accelerates Detection Use Case and Reduces Manual Analyst Workflow By Using TruSTAR   “TruSTAR allowed me to play out my use cases for free. Seeing the value that even the free version provided, and then seeing what the paid version ... Read More
Customer Spotlight Webinar: PVH Corp. TruSTAR has a new webinar series, Customer Spotlight, where we invite security leaders and operators from across the TruSTAR community to share ... Read More