10-24, 10:45–11:15 (Europe/Luxembourg), Europe - Main Room
In 2022, an insider from one of the scammers' groups switched sides and shared details about the ongoing attacks. This kicked off a multi-year analysis of the underground economy that provides a range of illicit Telegram-based services to facilitate shady activities, offering everything from data breaches and identity theft to financial fraud. The talk will explore how fraudsters leverage platforms' features to launch "Scam as a Service" operations.
The case study explores real-world scenarios where groups of cybercriminals operate as service providers, offering fake invoices, financial fraud, crypto and NFT investment advisement, data breach, escort and blackmailing services. Furthermore, the study investigates the consequences of this "Scam as a Service" model on individuals, businesses, and society, emphasizing the financial losses, reputational damage, and regulatory challenges resulting from these activities.
During the talk, I will cover:
- Tactics, techniques and procedures the scammers utilize. Including the recruitment process, what types of services are available, and how the infrastructure is set up.
- Insights backed by findings. I got operating manuals, tools and access to the infrastructure.
- My experience from several years of analyzing these services and lessons learned.
Aurimas Rudinskis is an Engineering Manager who leads the Vinted Cyber Defence team. He focuses on Threat Intelligence, security operations, and detection engineering that can automate and scale detection capabilities. Aurimas specializes in advanced threat-hunting techniques and human-driven cyber operations.
He firmly believes that cyber security is a community, and we can only succeed by helping and learning from one another.