In this threat briefing, Ian Ahl, SVP of P0 labs and former Head of Advanced Practices at Mandiant, will walk through how threat actors have honed how they leverage compromised non-human identities like API keys and access tokens. From SES abuse, to cryptomining, to now LLMjacking, threat actors follow where the money goes. Ian will demonstrate how modern threat actors are LLMjacking hosted models to run dark roleplaying services, and rack up compute costs along the way. Join this public threat briefing to learn:
So bring some teammates and walk away with a crash course in how to bolster your defenses against advanced threat actor groups.
"P0 labs is at the forefront of understanding attacks by making identity a pillar in their research of threat actors like LUCR-3, aka Scattered Spider."
"The PO Labs continues to impress us by being at the forefront of these emerging cloud attacks. The knowledge they're able to share with our team on the TTPs of modern threat actors like Scattered Spider is unlike anything we've seen before."
"Permiso provided insights into managed and unmanaged risk areas that we didn't previously have."
IAN AHL
SVP of P0 Labs
Former Head of Advanced Practices at Mandiant (10 years)
Incident Response Extraordinaire
Former TekDefense
USMC