Joseph Lucas
Joe loves the intersection of data science and security. He is currently an Offensive Security Researcher for Artificial Intelligence at NVIDIA and was previously a TPM on the AWS Red Team. He's a fan of the PyData ecosystem and has spoken at PyCon US and made small contributions to several open source libraries. He maintains a repository of machine learning security puzzles (HackThisAI) and recently worked with the AI Village to run a Capture-the-Flag competition at DEFCON30.
Sessions
Many Python data professionals work daily in JupyterLab or Notebook instances. What can a hacker do with access to that system? In this presentation, I will introduce the threat model and show why Jupyter instances are valuable targets. Next, I will demonstrate several post-exploitation activities that someone may try to perform on systems hosting Jupyter instances. We will conclude with some defensive strategies to minimize the likelihood and impact of these activities. This talk will help data scientists and information technology professionals better understand the perspective of potential attackers operating in Jupyter environments to improve defensive awareness and behavior.