JSAC2024 -Day 2-

This blog post summarizes JSAC2024 Day 2 main-track talks highlighting multiple active cyber threats and research: large-scale analysis of malicious MSIX/APPX packages, supply-chain attack case studies against the financial sector, abuse of VSCode Dev tunnels for remote access, phishing actor ecosystem and phishing-kit analysis, deception-based phishing defenses, the importance of actor identification in ransomware incidents, and new APT tooling and campaigns (notably HiddenFace/NOOPDOOR and updated LODEINFO activity). Presentations covered TTP changes, IoCs, detection/hunting techniques, and mitigation recommendations for organizations.