Technology
Christopher Glyer and Nick Carr sit down with the top two Steves fromAdvanced Practices: Steve Stone (@stonepwn3000) and Steve Miller(@stvemillertime) to talk about the front-line technical stories andresearch presented at the 2019 #FireEyeSummit.With team members embedded on every investigation, they dissect thekey takeaways from the past year’s responses and trends in trackingthe groups and techniques that matter. They cover thebehind-the-scenes of recent FIN7 events* and put that in perspectiveagainst Steve’s PDB research** and other research presented at thesummit, including talks from Advanced Practices team members onproactive identification of C2, deep code signing research, and richheader hunting at scale. We quickly highlight a favorite talk “Livingoff the Orchard”*** revealing TTPs and artifacts left behind from themillion mac engagement. There’s double the chance you’ll enjoy Steveas a guest – and we were pleased to finally have them on.NOTE: Glyer live-tweeted the technical track**** throughout the summituntil additional blogs and videos are expected to release.*https://www.fireeye.com/blog/threat-research/2019/10/mahalo-fin7-responding-to-new-tools-and-techniques.html**https://www.fireeye.com/blog/threat-research/2019/08/definitive-dossier-of-devilish-debug-details-part-one-pdb-paths-malware.html***https://www.fireeye.com/blog/threat-research/2019/10/leveraging-apple-remote-desktop-for-good-and-evil.html**** https://twitter.com/cglyer/status/1181978827028873221