Tom Tovar

Thinking Differently - How to Make Money from Cyber Attacks & Cheats

What if you could turn mobile game cheaters into paying customers? Learn how to monetize attacks instead of just blocking them.

Thinking Differently - How to Make Money from Cyber Attacks & Cheats
#1about 3 minutes

Rethinking cyber attacks as a revenue opportunity

Instead of blocking all attacks, consider the user's intent and transform security events into monetization moments.

#2about 4 minutes

Understanding the scale and speed of mobile app attacks

Mobile apps are attacked within milliseconds of being published, with a significant percentage of the user base under attack at any given time.

#3about 2 minutes

Monetizing users on gray market gaming platforms

Instead of blocking users on emulators like BlueStacks, partner with the platform to charge a bounty for each player you allow.

#4about 3 minutes

Turning memory editing cheats into paid upgrades

When a player uses a tool like Game Guardian to edit memory for in-game currency, offer them the option to purchase those points legitimately.

#5about 2 minutes

Converting advanced cheaters into subscribers

For users employing advanced tools like Lucky Patcher, offer a subscription model that legitimizes their enhanced gameplay as a premium feature.

#6about 3 minutes

Creating a pro league for automated bot users

Channel users who run automated bots into a separate 'pro league' where they can compete against other bots, creating a new competitive tier.

#7about 2 minutes

Knowing which attacks should not be monetized

Distinguish between users trying to enhance their experience and malicious actors committing fraud or identity theft, which must always be blocked.

#8about 3 minutes

Implementing a framework for attack monetization

A successful monetization strategy requires a framework to detect attacks, provide telemetry data, and give developers control over the business logic outcome.

#9about 3 minutes

Q&A on common attacks and detection methods

The most common mobile gaming attack is memory editing, and reliable defense involves detecting the patching methods used by attackers on both the app and the defense itself.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Applying gaming anti-cheat lessons to cybersecurity
02:39 MIN

Applying gaming anti-cheat lessons to cybersecurity

Outsmarting the System: What Game Cheaters Can Teach Us About Cyber Security

Demonstrating deepfake attacks and social engineering
03:11 MIN

Demonstrating deepfake attacks and social engineering

The AI Elections: How Technology Could Shape Public Sentiment

Why developers make basic cybersecurity mistakes
02:26 MIN

Why developers make basic cybersecurity mistakes

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes

From vulnerability researcher to automated security founder
05:31 MIN

From vulnerability researcher to automated security founder

The transformative impact of GenAI for software development and its implications for cybersecurity

Modern cybersecurity challenges for developers
03:43 MIN

Modern cybersecurity challenges for developers

Cyber Security: Small, and Large!

How Android and iOS successfully hardened their platforms
01:13 MIN

How Android and iOS successfully hardened their platforms

Simple Steps to Kill DevSec without Giving Up on Security

Q&A on speed, team adoption, and common mistakes
15:12 MIN

Q&A on speed, team adoption, and common mistakes

DevSecOps: Injecting Security into Mobile CI/CD Pipelines

Introduction to developer-first security and CTFs
04:09 MIN

Introduction to developer-first security and CTFs

Capture the Flag 101

Featured Partners

Related Videos

See all videos
Hacking Kubernetes: Live Demo Marathon46:36

Hacking Kubernetes: Live Demo Marathon

Andrew Martin

Stranger Danger: Your Java Attack Surface Just Got Bigger1:58:59

Stranger Danger: Your Java Attack Surface Just Got Bigger

Vandana Verma Sehgal

Outsmarting the System: What Game Cheaters Can Teach Us About Cyber Security17:31

Outsmarting the System: What Game Cheaters Can Teach Us About Cyber Security

John Romero

Getting under the skin: The Social Engineering techniques43:56

Getting under the skin: The Social Engineering techniques

Mauro Verderosa

Plants vs. Thieves: Automated Tests in the World of Web Security24:09

Plants vs. Thieves: Automated Tests in the World of Web Security

Ramona Schwering

Security Pitfalls for Software Engineers27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

Cracking the Code: Decoding Anti-Bot Systems!57:47

Cracking the Code: Decoding Anti-Bot Systems!

Fabien Vauchelles

Skynet wants your Passwords! The Role of AI in Automating Social Engineering31:19

Skynet wants your Passwords! The Role of AI in Automating Social Engineering

Wolfgang Ettlinger & Alexander Hurbean

Related Articles

View all articles
DC
Daniel Cranney
Dev Digest 181: America Offline! Pay to code? And bad AI hackers…
Inside last week’s Dev Digest 181 . ☎️ AOL shuts down dial-up internet 🔥 Bot-only social media platform immediately goes to war 🤑 Is the future pay to code? ⚠️ Path traversal vulnerability in Microsoft’s agentic web 🤷 Why is XSS still a thing? 🟪 The...
Dev Digest 181: America Offline! Pay to code? And bad AI hackers…
DC
Daniel Cranney
Dev Digest 198: 30 years of JS, In-Browser AI, How Attackers Abuse GenAI
Inside last week’s Dev Digest 198 . 🎂 30 years of JavaScript ⏰ How long is a JavaScript second 💻 Clean code in Angular 🤦‍♂️ AI makes different mistakes than humans 👨‍💻 In-browser and offline AI 🟠 Undocumented Hacker News features 🐋 DeepSeek censored...
Dev Digest 198: 30 years of JS, In-Browser AI, How Attackers Abuse GenAI

From learning to earning

Jobs that call for the skills explored in this talk.

DevOps Manager

DevOps Manager

ThreatAware
Charing Cross, United Kingdom

DevOps
Continuous Integration
Amazon Web Services (AWS)