2023-10-07 –, Track 2
A collection of (redacted) stories of using Open-Source Intelligence and Offensive Security Techniques to create so truly crazy yet actionable malicious scenarios to show the overall risk of organizations:
Includes:
• Liquidate the one of largest mining operations in the world.
• How to ruin a good bottle of wine
• Lights out with a .22
Over the course of my career, I have conducted multiple investigations and penetration tests that have had some reports that sound more science fiction/spy thriller than rooted in the reality of your every day risk assessments.
This talk is a (redacted) retelling of some of the scenarios that actually landed in a clients hands and were received seriously.
Operation You’re Mine:
Through an open-source intelligence (OSINT) investigation we were able to determine that one of our clients could be a stepping stone to conducting wire fraud from one of the largest mining operations in the world.
How to ruin a bottle of Wine:
Another open-source intelligence (OSINT) investigation showed evidence that it was entirely possible to manipulate the soil’s acidity to ruin an entire wine vintage for years!
Lights out with a .22:
The United States power grid is setup in such a way that any physical attack would be highly successful. Using open source intelligence, we can map out how and where to systematically target assets within the grid to destabilize the power grid or shut it down entirely.
Caprico is a seasoned Penetration Tester with experience in Incident Response and Open Source Intelligence Investigations. Currently he is working with critical infrastructure non-for-profits to ensure risks are identified and mitigated before a catastrophic kinetic attack can be achieved.