Phantom Menace, Episode I? The Attack That Undressed the Mexican Banks in ‘18
Contents
SESSION ID: HT-F01
Phantom Menace, Episode I? The Attack That
Undressed the Mexican Banks in ‘18
Josu Loza
CISSP, CEH, CHFI
@josuloza
#RSAC
#RSAC
Your Company Is Ready?
2
#RSAC
Disclaimer:
The information, opinions, images or data expressed in this
presentation, are my own personal opinions and don't
represent my employers view in any way.
3
#RSAC
Agenda
Remembering The Main Attacks On Wire Transfer Systems.
Understanding a Payment System.
Building A Secure Infrastructure.
Living A Cyberattack, On First Person.
Learned Lessons.
4
Not So Long Ago
#RSAC
The Usual Suspects
Organized Crime –
50%
Driven by profit. Often
looking for personally
identifiable information
(PII) such as social
security numbers, credit
cards, and banking info.
Insiders – 28%
Disgruntled employees
looking for revenge or
financial gain. May
collaborate with other
threat actors for
money.
State Sponsored –
12%
Motivated by political,
economic, or military
agendas. Often looking
for competitive
information or users
that can be exploited.
6
Hacktivists
Cause damage to
disliked organizations.
The ultimate goal is to
gain awareness for
their issue.
Opportunists
Amateur criminals,
driven by desires of
notoriety. Looking to
exploit flaws in
network systems and
devices.
Main Attacks On Wire Transfers Systems
Group IB. (October 2018). Swift And Local Interbank Payment Systems. The Hi-Tech Crime …
Phantom Menace, Episode I? The Attack That
Undressed the Mexican Banks in ‘18
Josu Loza
CISSP, CEH, CHFI
@josuloza
#RSAC
#RSAC
Your Company Is Ready?
2
#RSAC
Disclaimer:
The information, opinions, images or data expressed in this
presentation, are my own personal opinions and don't
represent my employers view in any way.
3
#RSAC
Agenda
Remembering The Main Attacks On Wire Transfer Systems.
Understanding a Payment System.
Building A Secure Infrastructure.
Living A Cyberattack, On First Person.
Learned Lessons.
4
Not So Long Ago
#RSAC
The Usual Suspects
Organized Crime –
50%
Driven by profit. Often
looking for personally
identifiable information
(PII) such as social
security numbers, credit
cards, and banking info.
Insiders – 28%
Disgruntled employees
looking for revenge or
financial gain. May
collaborate with other
threat actors for
money.
State Sponsored –
12%
Motivated by political,
economic, or military
agendas. Often looking
for competitive
information or users
that can be exploited.
6
Hacktivists
Cause damage to
disliked organizations.
The ultimate goal is to
gain awareness for
their issue.
Opportunists
Amateur criminals,
driven by desires of
notoriety. Looking to
exploit flaws in
network systems and
devices.
Main Attacks On Wire Transfers Systems
Group IB. (October 2018). Swift And Local Interbank Payment Systems. The Hi-Tech Crime …