The amount of user data being processed on any given day is astronomical and can overwhelm even the most seasoned security teams. Today’s most innovative online criminals know how to take advantage of a company’s inability to focus on anything except anomalies and blend in among the masses. Well-organized crime rings exploit the latest breaches, stolen identities, and free tools to create millions of fake accounts to hide among billions of benign users of your service, and they are waging a variety of large-scale attacks to exploit these services for financial gain.
Using research from more than one billion users, 500 billion events, and 50 million malicious accounts collected from global online services, Julian Wong details some of the sophisticated attack techniques being used by modern day online criminals to evade detection, including hiding locations through VPNs and cloud-hosting services, mobile device flashing, and faking browser info, user-agent strings, and MAC addresses. Julien then uses this data to provide context for how complex the detection challenges being faced by security teams are and demonstrates how these types of attacks can be detected and mitigated by leveraging the latest in artificial intelligence, including Spark-based big data security analytics and unsupervised machine learning.
Julian Wong is an architect at DataVisor. A fraud and security detection industry veteran, Julien was previously head of trust and safety at Indiegogo and Etsy; risk management leader at Upwork, where he developed scalable systems and teams for mitigating fraud and risks; and the lead for Google’s engineering team responsible for building algorithms to prevent fraud on its ad platform. Julian holds a bachelor’s degree in engineering from the University of California, Berkeley, and an MBA from NYU’s Stern School of Business.
©2017, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • firstname.lastname@example.org