Tom Tovar
Thinking Differently - How to Make Money from Cyber Attacks & Cheats
#1about 3 minutes
Rethinking cyber attacks as a revenue opportunity
Instead of blocking all attacks, consider the user's intent and transform security events into monetization moments.
#2about 4 minutes
Understanding the scale and speed of mobile app attacks
Mobile apps are attacked within milliseconds of being published, with a significant percentage of the user base under attack at any given time.
#3about 2 minutes
Monetizing users on gray market gaming platforms
Instead of blocking users on emulators like BlueStacks, partner with the platform to charge a bounty for each player you allow.
#4about 3 minutes
Turning memory editing cheats into paid upgrades
When a player uses a tool like Game Guardian to edit memory for in-game currency, offer them the option to purchase those points legitimately.
#5about 2 minutes
Converting advanced cheaters into subscribers
For users employing advanced tools like Lucky Patcher, offer a subscription model that legitimizes their enhanced gameplay as a premium feature.
#6about 3 minutes
Creating a pro league for automated bot users
Channel users who run automated bots into a separate 'pro league' where they can compete against other bots, creating a new competitive tier.
#7about 2 minutes
Knowing which attacks should not be monetized
Distinguish between users trying to enhance their experience and malicious actors committing fraud or identity theft, which must always be blocked.
#8about 3 minutes
Implementing a framework for attack monetization
A successful monetization strategy requires a framework to detect attacks, provide telemetry data, and give developers control over the business logic outcome.
#9about 3 minutes
Q&A on common attacks and detection methods
The most common mobile gaming attack is memory editing, and reliable defense involves detecting the patching methods used by attackers on both the app and the defense itself.
Related jobs
Jobs that call for the skills explored in this talk.
Featured Partners
Related Videos
46:36Hacking Kubernetes: Live Demo Marathon
Andrew Martin
1:58:59Stranger Danger: Your Java Attack Surface Just Got Bigger
Vandana Verma Sehgal
17:31Outsmarting the System: What Game Cheaters Can Teach Us About Cyber Security
John Romero
43:56Getting under the skin: The Social Engineering techniques
Mauro Verderosa
24:09Plants vs. Thieves: Automated Tests in the World of Web Security
Ramona Schwering
27:32Security Pitfalls for Software Engineers
Jasmin Azemović
57:47Cracking the Code: Decoding Anti-Bot Systems!
Fabien Vauchelles
31:19Skynet wants your Passwords! The Role of AI in Automating Social Engineering
Wolfgang Ettlinger & Alexander Hurbean
From learning to earning
Jobs that call for the skills explored in this talk.
Security Engineer - Application Security
IFX Payments
Charing Cross, United Kingdom
€60K
Azure
DevOps
Python
Powershell
+2
Android Engineer (Training in Reverse Engineer/Cybersecurity) - Barcelona Hybrid
Cognizant
Barcelona, Spain
Java
Burp Suite
Reverse Engineer (Android Developer + Cybersecurity Engineer) / Barcelona Hybrid
Cognizant
Barcelona, Spain
Java
Android
Java Developer (Training in Android and Reverse/Cybersecurity) - Barcelona Hybrid
Cognizant
Barcelona, Spain
Java
NoSQL
Hibernate
Burp Suite
Cyber Security Content Engineer, Blue Team - Azure
TryHackMe
Charing Cross, United Kingdom
Remote
€46K
Intermediate
PHP
Bash
Azure
+2