Tom Tovar
Thinking Differently - How to Make Money from Cyber Attacks & Cheats
#1about 3 minutes
Rethinking cyber attacks as a revenue opportunity
Instead of blocking all attacks, consider the user's intent and transform security events into monetization moments.
#2about 4 minutes
Understanding the scale and speed of mobile app attacks
Mobile apps are attacked within milliseconds of being published, with a significant percentage of the user base under attack at any given time.
#3about 2 minutes
Monetizing users on gray market gaming platforms
Instead of blocking users on emulators like BlueStacks, partner with the platform to charge a bounty for each player you allow.
#4about 3 minutes
Turning memory editing cheats into paid upgrades
When a player uses a tool like Game Guardian to edit memory for in-game currency, offer them the option to purchase those points legitimately.
#5about 2 minutes
Converting advanced cheaters into subscribers
For users employing advanced tools like Lucky Patcher, offer a subscription model that legitimizes their enhanced gameplay as a premium feature.
#6about 3 minutes
Creating a pro league for automated bot users
Channel users who run automated bots into a separate 'pro league' where they can compete against other bots, creating a new competitive tier.
#7about 2 minutes
Knowing which attacks should not be monetized
Distinguish between users trying to enhance their experience and malicious actors committing fraud or identity theft, which must always be blocked.
#8about 3 minutes
Implementing a framework for attack monetization
A successful monetization strategy requires a framework to detect attacks, provide telemetry data, and give developers control over the business logic outcome.
#9about 3 minutes
Q&A on common attacks and detection methods
The most common mobile gaming attack is memory editing, and reliable defense involves detecting the patching methods used by attackers on both the app and the defense itself.
Related jobs
Jobs that call for the skills explored in this talk.
Matching moments
00:28 MIN
Why developers make basic cybersecurity mistakes
Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes
15:35 MIN
Modern cybersecurity challenges for developers
Cyber Security: Small, and Large!
29:56 MIN
Q&A on speed, team adoption, and common mistakes
DevSecOps: Injecting Security into Mobile CI/CD Pipelines
24:17 MIN
Shifting security left with collaborative threat modeling
We adopted DevOps and are Cloud-native, Now What?
15:12 MIN
An overview of common social engineering attack techniques
Getting under the skin: The Social Engineering techniques
14:52 MIN
Applying gaming anti-cheat lessons to cybersecurity
Outsmarting the System: What Game Cheaters Can Teach Us About Cyber Security
38:50 MIN
Key takeaways and defenses against social engineering
Getting under the skin: The Social Engineering techniques
08:16 MIN
Common attacks targeting software developers
Vulnerable VS Code extensions are now at your front door
Featured Partners
Related Videos
17:31Outsmarting the System: What Game Cheaters Can Teach Us About Cyber Security
John Romero
43:56Getting under the skin: The Social Engineering techniques
Mauro Verderosa
24:09Plants vs. Thieves: Automated Tests in the World of Web Security
Ramona Schwering
27:32Security Pitfalls for Software Engineers
Jasmin Azemović
57:47Cracking the Code: Decoding Anti-Bot Systems!
Fabien Vauchelles
31:19Skynet wants your Passwords! The Role of AI in Automating Social Engineering
Wolfgang Ettlinger & Alexander Hurbean
24:49Deep Fakes: The Lies We Can’t See
George Proorocu
34:36Fintech Rebellion: How Developers Are Disrupting the Future of Commerce
Arik Shtilman
From learning to earning
Jobs that call for the skills explored in this talk.
Cybersecurity Offensive Specialist (Red Teaming) in München | Guldberg GmbH
Guldberg GmbH
Azure
Network Security
Amazon Web Services (AWS)