Targeted Attacks 2017 (TA’17)
Program Chair Markus Jakobsson
A targeted attack is one in which contextual information about the intended victim is used to configure the attack; for example, a spear phishing attack is targeted, while a typical spam blast is not. Targeting is performed in order to maximize yield and minimize detection. Being able to assess the yield of attacks enables efforts to predict likely growth of these attacks, as soaring profits fuel more attacks. Similarly, it is important to understand how targeted attacks avoid detection in order to improve detection methods.
It is commonly believed that targeted attacks are enabled by data from account compromises, breaches, and public resources, but the risk associated with various types of data is poorly understood. It is also important to better understand new methods or communication media used for targeted attacks, and how attackers tailor targeted attacks to the media and to their goals – whether this is to distribute malware, obtain data, or coerce a user to perform an action.
The goal of the workshop is to bring together security researchers, practitioners and policy-makers to identify upcoming threats and discuss countermeasures.