HTCIA New England Chapter Quaterly Meeting

Thursday, September 8, 2022 (9:00 AM - 1:00 PM) (EDT)

Description

Speaking Slot

Speaker

Bio

Topic title

Summary of topic

9-10

Matt Danner


Matt Danner is the Owner/Founder of Monolith Forensics and the lead developer of Monolith, a case and evidence management system for digital forensics.  Before working on Monolith full time, he was a DFIR professional with 10 years of experience working for organizations in both the public and private sector.  Matt regularly offers services as a forensics expert/consultant to clients to maintain his skillset and to stay on top of forensic trends and practices.

3 Strategies to Reduce the Load on Your Digital Forensics Lab

Every forensics lab has a series of workflows they need to manage that slows everything down.  We will discuss 3 major features in Monolith that are designed to ease the burden on the lab by streamlining some of these common workflows like evidence intake, case reporting, and metrics reporting.

10-11

Warren Kruse

HTCIA President and VP of Forensics for UnitedLex

HTCIA Business

Welcome and HTCIA Updates

11-noon

Craig Jackson

Craig Jackson has been fascinated with investigating crime since he first read Sherlock Holmes as a child. Originally planning for a career in crime scene investigation, he discovered the world of information security in 2013 and hasn't looked back. Since then, Craig has specialized in penetration testing and red teaming, secure wireless design, regulatory compliance, and incident response. Craig currently works as a Senior Incident Response Consultant with Cisco Talos Incident Response (CTIR) where he leads proactive and reactive incident response services for customers around the world. Craig has CISSP, OSCP, GPYC, GAWN, and CEH certifications and has written several industry tools.

The Adventure of the Billionaire's Wire Transfer and Other BEC Stories 

Summary - Business Email Compromise (BEC) attacks have become pervasive over the past 5-7 years. According to an Internet Crime Complaint Center (IC3) report released in May 2022, global financial losses associated with BEC exceeded $43 billion between June 2016 and December 2021, and recent declines in global ransomware activity could indicate further increases in BEC. This presentation will help prepare investigators for BEC incidents. Learning objectives include: 

  • Understanding three common adversary TTPs associated with BEC incidents. 

  • Understanding a general approach to investigating BEC incidents. 

  • Understanding methods to quickly analyze activity logs and malicious inbox rules in Microsoft 365.


The Kingsbury Training Room is to the right as you enter the lobby at the end of a short hallway.

Wellesley Police Department
485 Washington Street
Wellesley, MA 02482 United States
Event Contact
Ryan Nolette
Send Email
Thursday, September 8, 2022 (9:00 AM - 1:00 PM) (EDT)
9am-Noon EST
Categories
HTCIA Chapter Event
Registered Guests
11
Powered By GrowthZone