

BEYOND
Fal.Con 2020:
Learning Sessions
George Kurtz
Browse 65+ learning sessions in five specialized tracks and exclusive CrowdStrike on Demand content.
Watch on DemandActor
Wicked Panda
Origins
China
Last Known Activity
September 2020
Known Threat / Interesting Details
Storied history dating back to around 2010, shifted from targeting primarily video game companies for personal profit then got into the espionage game for the Chinese Communist Party while still moonlighting and continuing to hack video game companies.
Something Of Great Interest
Their targets are wide ranging from governments to companies in all types of industries including telecommunications. The telecommunications compromise activity saw them exfiltrating text messages and call detail records for certain persons of interest.
Look into the future of cybersecurity.
The 4th annual CrowdStrike Cybersecurity Conference brings together the best business and technology minds to fight against today’s sophisticated attackers and stop breaches.

View On Demand
Join the world’s top cybersecurity visionaries, experts and technical masterminds to learn about the current state of the industry and take a look at what’s beyond the horizon.
See More, Know More, Do More with Cloud Security Posture Management
Cloud, Container & Data Center Security
See More, Know More, Do More with Cloud Security Posture Management
Multiple Speakers
CrowdStrike
20:55
Adapting Your IT Hygiene Program for Long-term Working Environment Changes
IT Operations
Adapting Your IT Hygiene Program for Long-term Working Environment Changes
Anand Visvanathan
CrowdStrike
19:12
Machine Learning for Threat Intelligence: Applying K-Means Clustering to Dharma and Phobos Ransomware Incidents by Eric Loui
Research & Threat Intelligence
Machine Learning for Threat Intelligence: Applying K-Means Clustering to Dharma and Phobos Ransomware Incidents by Eric Loui
Eric Loui
CrowdStrike Inc.
27:27
OverWatch in Action: Demystifying the Threat Hunting Process
Threat Hunting & Incident Response
OverWatch in Action: Demystifying the Threat Hunting Process
Multiple Speakers
CrowdStrike
24:26
Actor
Viceroy Tiger
Origins
India
Last Known Activity
June 2020
Known Threat / Interesting Details
Frequently targets the Pakistani government and military as well as other groups of interest in South Asia using both Windows and Android malware for espionage.
Something Of Great Interest
In 2020, this adversary has made widespread use of Android-based mobile malware to steal information against targets mainly in South Asia, especially Pakistan.
Actor
Venom Spider
Origins
Moldova
Last Known Activity
October 2020
Known Threat / Interesting Details
Enables other criminal actors through the development and operation of a line of criminal malware that is designed to gain initial access, conduct reconnaissance and deploy additional malware, both proprietary and third-party. The actor has long been associated with their primary online moniker of “Badbullzvenom”.
Something Of Great Interest
Has professed interest in working with actors active in more targeted criminal activity rather than opportunistic and widespread campaigns.
Actor
Ocean Buffalo
Origins
Vietnam
Last Known Activity
August 2020
Known Threat / Interesting Details
Heavy targeting within Vietnam; Other targeting mostly focused in Southeast/East Asia. Suspect that they primarily target entities that may be considered a threat to the Communist Party in Vietnam or have some other perceived domestic security threat. We’ve also seen them target automobile manufacturers, hotels, and retail sector in the last couple of years. They often name files after Pokemon characters
Something Of Great Interest
In early January they targeted entities in China likely associated with China’s response to COVID-19. This targeting occurred before anyone knew the extent of the crisis. We believe that OCEAN BUFFALO’s cyber operations targeting China may have informed Vietnam’s response to the pandemic and contributed to the fact that Vietnam has had one of the best, if not the best, responses to the pandemic of any country in the world.
Featured Speakers
George Kurtz
George Kurtz is the CEO and Co-Founder of CrowdStrike, a leading provider of next-generation endpoint protection, threat intelligence and services. He is an internationally recognized security expert, author, entrepreneur and speaker.
Eric Yuan
Eric S. Yuan founded Zoom in 2011. Prior to starting Zoom, Eric was Corporate Vice President of Engineering at Cisco, where he was responsible for Cisco’s collaboration software development. Eric was the heart and soul of the WebEx product from 1997 to 2011.
Stewart Butterfield
Stewart Butterfield is the Co-Founder and CEO of Slack, a new category of software to help teams do their best work. He previously co-founded Flickr and has had a distinguished 20+ year career as an entrepreneur, designer and technologist.
Lewis Hamilton
Six-time FIA Formula One World Champion Lewis Hamilton has an extraordinary racing career and has been racing for the Mercedes-AMG Petronas F1 Team since 2013.
Toto Wolff
Toto Wolff is Team Principal and CEO of the Mercedes-AMG Petronas F1 Team. He is also the Head of Mercedes-Benz Motorsport.
Geoffrey Brown
Geoff Brown, New York City’s CISO and Head of NYC Cyber Command, is charged with setting the City government’s cybersecurity policies, directing response to cyber incidents, and advising City Hall and 100+ agencies on the City’s overall cyber defense.
Quiessence Phillips
Quiessence Phillips is Deputy CISO for the City of New York. Her leadership has yielded the first of its kind centralized threat management program, serving over 100 agencies, entities, and organizations.
Stephen Ward
Stephen Ward is the Chief Information Security Officer at The Home Depot, where he provides progressive direction over cybersecurity and technology risk.
Steve Schmidt
Stephen Schmidt is Vice President and Chief Information Security Officer for Amazon Web Services. His duties include security development as well as conveying the security benefits of cloud to customers. Prior to joining AWS, he served as acting CTO for the Federal Bureau of Investigation.
Carmine Di Sibio
Carmine Di Sibio is the Global Chairman and CEO of EY, one of the largest professional services organizations in the world, with almost 300,000 people globally.
Sir Robert Wainwright
Sir Rob Wainwright, former Executive Director of Europol, is a senior partner at Deloitte, advising the boards and executive teams of global companies on cybersecurity, financial crime and other areas of risk.
William Evanina
William R. Evanina, Director of the National Counterintelligence and Security Center (NCSC), is the head of counterintelligence (CI) for the U.S. government and is the principal CI and security advisor to the Director of National Intelligence.
{Will be replaced by the modal content}