Faculty Recruiting Support CICS

Preventing DNS Attacks with Andrey Yesyev

09 Oct
Wednesday, 10/09/2019 7:00pm to 8:00pm
Integrative Learning Center, Room S231
Special Event
Speaker: Andrey Yesyev

Andrey Yesyev will discuss the Domain Name System (DNS) and how it can be compromised. He will cover a few topics, such as using Unicode domain names and typosquatting for phishing attacks. The Domain Generation Algorithm (DGA) and how it's used by malicious actors. Andrey will go over how to detect DGA domains and what it means if one sees queries to DGA domains in their network. He will also discuss data exfiltration using DNS and what this means for your security. And he will discuss the fast flux technique for malicious domains.

Before joining Accedian as the Director of Cybersecurity Solutions, Andrey spent nearly 6 years at IBM as a security engineer and a threat analytics architect working on QRadar Incident Forensics and DNS Analytics projects. He was also a part of the IBM team that supports collaboration with Quad9, a secure public DNS service which was created as a collaboration between PCH, IBM and the Global Cyber Alliance. With more than 10 years of experience in deep packet inspection and traffic analytics, Andrey placed 1st, 2nd, 3rd and 2nd in the Network Forensic Puzzle Contest at DefCon 21, 22, 23 and 24, respectively.