Cookie Thief: Using Reverse Tunnel to Steal Session Cookies and Expose AWS & Salesforce Data
While the adoption of SaaS has been increasingly critical, the lack of detections and visibility within these platforms have placed many organizations at a greater risk of data exfiltration and leakage.
This presentation will provide an example of how hackers evade common detections, use a reverse HTTP tunnel to steal cookies and credentials, and make sensitive AWS, GitHub, and Salesforce data publicly accessible!
Ed Lin is Security Architect from Varonis’ Incident Response and Security Architecture team. Since joining the IR team, Ed has been helping customers integrate security tools like Varonis into their security ecosystems so that they can effectively detect and respond to cyber threats.
Have a login? Login Now
{{vm.loginInfo.errorMessage}}
Create an Account
Forgot your Username or Password?
Register as Guest
Address
Phone
{{slot.Name}}
{{ vm.EventInfo.EventSettings.NoShowPolicy }}