Threat Briefing: How Attackers Leverage Non-Human Identities for LLMjacking
Wed Oct 30 at 9am PT/12pm ET
In this threat briefing, Ian Ahl, SVP of P0 labs and former Head of Advanced Practices at Mandiant, will walk through how threat actors have honed how they leverage compromised non-human identities like API keys and access tokens. From SES abuse, to cryptomining, to now LLMjacking, threat actors follow where the money goes. Ian will demonstrate how modern threat actors are LLMjacking hosted models to run dark roleplaying services, and rack up compute costs along the way. Join this public threat briefing to learn:
- How attackers compromise non-human identities for hijacking victim GenAI infrastructure to power their own LLM applications.
- What Permiso captured from a full prompt and response log from a recent campaign.
- How to defend against the common resource hijacking attacks in AWS and other cloud providers.
So bring some teammates and walk away with a crash course in how to bolster your defenses against advanced threat actor groups.
Sign Up for The Threat Briefing
Your CloudSec Expert
Ian Ahl
SVP of P0 Labs
"P0 labs is at the forefront of understanding attacks by making identity a pillar in their research of threat actors like LUCR-3, aka Scattered Spider."
"The PO Labs continues to impress us by being at the forefront of these emerging cloud attacks. The knowledge they're able to share with our team on the TTPs of modern threat actors like Scattered Spider is unlike anything we've seen before."
"Permiso provided insights into managed and unmanaged risk areas that we didn't previously have."
