The ./havoc Podcast

Tom Hegel: ModifiedElephant APT

Episode Summary

On this episode of The ./havoc Podcast, guest Tom Hegel of SentinelOne's SentinelLabs discusses his recently released report ModifiedElephant APT and a Decade of Fabricating Evidence (https://www.sentinelone.com/labs/modifiedelephant-apt-and-a-decade-of-fabricating-evidence/). The analysis that formed the report is based on the digital forensic investigation results by Arsenal Consulting (along with other sources) that shows "a compromise of defendant systems led to the planting of files that were later used as evidence of terrorism and justification for the defendants’ imprisonment." The details of Arsenal Consulting's digital forensics investigation on behalf of defendant Rona Wilson can be found here: https://arsenalexperts.com/persistent/resources/pages/BK-Case-Rona-Wilson-Report-I.zip Tom Hegel is a Senior Threat Researcher with SentinelOne. Working within the SentinelLabs team, his mission is focused on the threat intelligence of global advanced persistent threat activity. He comes from a background of security research, detection engineering, and malware analysis. Video recording: https://youtu.be/PyFmqs2xGtA

Episode Notes

On this episode of The ./havoc Podcast, guest Tom Hegel of SentinelOne's SentinelLabs discusses his recently released report ModifiedElephant APT and a Decade of Fabricating Evidence.

The analysis that formed the report is based on the digital forensic investigation results by Arsenal Consulting (along with other sources) that shows "a compromise of defendant systems led to the planting of files that were later used as evidence of terrorism and justification for the defendants’ imprisonment." The details of Arsenal Consulting's digital forensics investigation on behalf of defendant Rona Wilson can be found here.

Tom Hegel is a Senior Threat Researcher with SentinelOne. Working within the SentinelLabs team, his mission is focused on the threat intelligence of global advanced persistent threat activity. He comes from a background of security research, detection engineering, and malware analysis.

Video recording: https://youtu.be/PyFmqs2xGtA