Cyber-Laundering

Historically, fraud detection and cybersecurity have been separate disciplines with unique objectives and approaches. But as criminal organizations seek to take advantage of online tools for fraudulent campaigns, they’ve created integrated techniques that encompass elements of both domains. Therefore, professionals charged with defending corporate networks and assets must also come together to defend against these shared adversaries. Increasingly, preventing criminals from using corporate platforms for illegal activity has become the responsibility of infosec teams who traditionally focused exclusively on data protection. This requires companies to adopt a new approach that combines digital insights from infosec with behavioral gaps identified by fraud investigations.  

This talk will provide insights from experience in both laundering investigations and cybersecurity to address the most prevalent and damaging cybercrime threats to companies -- and how to defend against them. 

How do we prevent our company from being used for criminal gain? What obstacles prevent us from identifying bad actors and what can we learn from our adversaries to create an infosec/fraud defense collaboration? 

Learning Objectives:

How information security professionals and fraud investigators can work together to build defense and resilience against shared adversaries. 

Techniques for recognizing cybercrime patterns and behaviors that incorporate elements of ransomware, laundering, cyber attacks, and email compromise. 

How infosec teams can shift away from a “cost center” mentality to deliver monetary value to their organizations.