Security Seminar

The underground cybercriminal space is very fragmented. Dozens of forums and hundreds if not thousands of groups and channels on Telegram (not to mention `deep-web' websites, Discord servers, and others) make a cybercriminal's life more complicated than not: which community(ies) to join, when, and what for? The decision is...

Disrupting online crime and harms often feels like playing a never-ending game of whack-a-mole. Shut down one malicious website, and another pops up; arrest one cybercriminal, and a few more may emerge in the shadows. This talk discusses in detail what has recently happened as law enforcement and tech firms have taken...

In this talk, I will share a story of how scientific research can contribute to enhancing cybercrime policing – and where it may fall short. Drawing on a 2021 USENIX paper, we explored the phishing landscape in the Netherlands. This research has since led to several follow-up initiatives in both the scientific community...

Uncovering and understanding how influence networks push propaganda and disinformation within the wider news ecosystem remains a difficult challenge that requires tracking and characterizing how narratives spread across thousands of fringe and mainstream news websites. Using 18 months of daily news article scrapes from 1...

Technology-facilitated domestic abuse is an evolving and widespread issue that has lasting effects on its victims and survivors. With nearly all modern domestic abuse cases involving some form of "tech-abuse", it is vital to develop new safety mechanisms and countermeasures to reduce harms to victim-survivors. In this talk...

The integration of the Internet of Things (IoT) into smart critical infrastructure has significantly enhanced monitoring, control, and efficiency. However, this integration introduces new cybersecurity risks, as IoT devices can become vulnerable points for attackers targeting essential services such as electricity, water...

Anonymous communication systems, such as mix networks, achieve anonymity at the expense of latency, which is introduced to alter the flow of packets and hinder their tracing. However, high latency has a negative impact on usability. In this talk, I present some recent works proposing novel latency-aware routing schemes for...

“Tobias on Locks and Insecurity Engineering” is a 700-page treatise on what can go wrong in the design of locks and security hardware. Ross Anderson’s primary work, “Security Engineering", was one of the impetuses for the book. Marc is a lawyer and physical security expert in the United States who has lectured at Cambridge...

It turns out that 0.02% of harmful experiences people have on social media today are addressed by the current approach to Integrity and Safety. Why is that? Think of how many ways there are to be racist, threaten someone (or any other issue), and then multiply by culture, sub-culture, age, and humans. I'll be discussing...

In this presentation, a data-agnostic model poisoning attack targeting federated learning systems will be explored. The proposed attack leverages a new adversarial graph autoencoder (GAE)-based framework that operates independently of training data access, thereby ensuring both its efficacy and stealth. The proposed attack...