Get your copy of Security Service Edge (SSE) for Dummies. Get the eBook

Press Release
Los Altos, Calif.
Feb. 9, 2017

Netskope to Lead Discussion on Maturation of Cloud Ransomware Market at Cloud Security Alliance Summit

Co-founder and chief scientist Krishna Narayanaswamy and Director of Netskope Threat Research Labs Ravi Balupari to Discuss “Cloud-First” Ransomware

Netskope, the leader in cloud security, today announced that its co-founder and chief scientist Krishna Narayanaswamy and Director of Netskope Threat Research Labs Ravi Balupari, will lead a discussion on “cloud-first” ransomware at the Cloud Security Alliance (CSA) Summit at RSA Conference 2017. The talk will be a technical look at how malicious actors now design ransomware to make best use of popular cloud services to hide in plain sight, and do more damage in less time.

CSA Summit Talk Details:

SESSION:     “Cloud-First” Ransomware: A Technical Analysis

DATES:           1:30-1:50 p.m. PT

LOCATION:   Marriott Marquis – Yerba Buena 5, San Francisco

SPEAKERS: Krishna Narayanaswamy – Chief Scientist, Netskope

Ravi Balupari – Director of Netskope Threat Research Labs, Netskope

OVERVIEW: Cloud services have emerged as the preferred attack vector of some of the most dangerous and innovative cloud malware exploits of the past six months. Why?  Because many organizations don’t inspect their cloud SSL traffic for a malware and the same functionalities of the cloud dramatically increase productivity (sync, share, collaborate, etc) also provide ransomware developers with a perfect medium for faster delivery of malware payloads to more targets.

The talk will detail the most recent malware campaign discoveries from The Netskope Threat Research Lab. Krishna and Ravi will provide technical analyses on the following:

  • Virlock ransomware, which encrypts files and also infects them, making it a polymorphic file infector
  • CloudFanta which uses the SugarSync cloud storage app to deliver malware capable of stealing user credentials and monitoring online banking activities
  • CloudSquirrel which takes advantage of multiple cloud apps throughout the ransomware kill chain with the intent to steal and exfiltrate user data
  • The Zepto variant of Locky ransomware now distributed both by popular cloud storage apps and via DLL.

This will be the first formal talk from the Netskope Threat Research Labs, launched in early 2016. Staffed by the industry’s foremost cloud threat and malware researchers, the Netskope Threat Research Labs discovers and analyzes the latest cloud threats affecting enterprises. With original research and in-depth analysis on cloud malware, new strains of ransomware, and other cloud-related threats, the Labs helps protect Netskope customers from malicious actors and contributes to the global security community with research, advice, and best practices.

Led by renowned security researchers, distinguished engineers, and principal architects with experience founding and leading companies in Silicon Valley and around the world, the Netskope Threat Research Labs is based in Los Altos, Calif. with satellite locations in Canada and India.

About Netskope

Netskope is the leader in cloud security. Using patented technology, Netskope’s cloud-scale security platform provides context-aware governance of all cloud usage in the enterprise in real time, whether accessed from the corporate network, remote, or from a mobile device. This means that security professionals can understand risky activities, protect sensitive data, stop online threats, and respond to incidents in a way that fits how people work today. With granular security policies, the most advanced cloud DLP, and unmatched breadth of workflows, Netskope is trusted by the largest companies in the world. Netskope — security evolved. To learn more, visit our website.