Jeroen Pinoy
I am a computer scientist with a background in software testing (automation), incident handling and threat intelligence sharing.
Sessions
Website cloaking is a technique that enables websites to deliver different content to
different clients, with the goal of hiding particular content from certain clients. Website
cloaking is based on client detection, which is achieved via browser fingerprinting. In an
attempt to hide their malicious web pages from detection, cyber criminals (can) use cloaking.
They use vulnerability detection to only target clients that seem vulnerable. On top
of that, they (can) also provide benign content in case they suspect someone or something is
trying to detect them. In this talk I quickly go over what cloaking is, how it works, and why I think it deserves some more attention from the cyber community.
Some lessons learned and anecdotes from spending several years sharing threat intelligence related to potential fraud / compromise.