FINTECH SECURITY CONFERENCE 2018

15th November 2018

Venue: The Excelsior, Hong Kong

281 Gloucester Rd, Causeway Bay


Introduction

The Hong Kong Government has targeted Fintech as a key technology area to focus on and invest in. Fintech is a natural evolution for Hong Kong, one of the world's leading international financial centres and among the world's most competitive economies. We are blessed with a strategic location and growing economic integration with Mainland China. We are also having a highly enabling and efficient information and communications technology sector, a vigorous financial regulatory framework and the rule of law.

Hong Kong is determined to rise as the region's and one of the world's Fintech hubs. Indeed, that's already happening. For Fintech investors, Hong Kong has become their first choice in East Asia outside the Mainland. Fintech investment here has spiralled in recent years, from about US$108 million in 2015 to US$216 million in 2016, and some US$546 million last year.

We are seeing many new exciting technologies surrounding virtual banks, crypto currencies, fast email/mobile phone payments and settlements, blockchain, and smart contract applications, etc. All of them require solid and sound cybersecurity foundations to thrive.

This event brings together the Hong Kong Fintech community and the world’s top notch cybersecurity communities to share experiences and address possible issues and challenges we may face when Hong Kong is developing ourselves into a Fintech hub.

The objective of the FinTech Security Conference is to allow C-level executives and top level management in the Fintech industry to learn about the latest cybersecurity risks facing us, as well as the technologies that can help to mitigate those risks.

About Group-IB:
Group-IB is an international company dedicated to preventing and investigating high-tech crimes and online fraud. The company develops software and hardware solutions for proactive cyber defence based on the latest threat intelligence data.

About DAT:
Dragon Advance Tech has been protecting our customers from the most advanced and sophisticated attacks in the world, attacks that were usually not detected by anti-virus software nor stopped by firewalls.
Our capabilities in malware analysis and reverse engineering, augmented by industry leading threat intelligence, has enabled us to become one of the most preferred cybersecurity and incident response service providers in the Asia Pacific region.

Agenda

09:25 - 09:30

Welcome Speech
Ilya Sachkov, CEO and Founder of Group-IB

09:30 - 09:35

Opening Remark
Professor T.W. Lam, Department Head of Computer Science, University of Hong Kong

09:35 - 10:05

Annual Group-IB Report of High-Tech Crime Trends
Dmitry Volkov, CTO, Head of Threat Intelligence Department and Сo-founder of Group-IB

Slide Download

10:05 - 10:50

Financial Stability and Technological Risk - Risks and Opportunities
Douglas W. Arner, Kerry Holdings Professor in Law, University of Hong Kong

Slide Download

10:50 - 11:05

Networking Break + Demo

11:05 - 11:35

Panel Discussion - Challenges and Opportunities for a Fintech Hub in Asia - a Cybersecurity perspective
Moderator: Cypri Yu, CEO and Founder of Binary Solutions Limited
Panelist:
- Dmitry Volkov, CTO, Head of Threat Intelligence Department and Сo-Founder of Group-IB
- Professor Douglas Arner, Law Professor, University of Hong Kong

11:35 - 12:20

Group-IB Portfolio Update
Tim Bobak, APAC Director of Group-IB

Slide Download

12:20 - 13:45

Buffet Lunch

13:45 - 14:00

Why Hong Kong Needs Better Policies to Tackle Cybersecurity Risks?
Honorable Charles Mok, JP of Legislative Council, HKSAR

14:00 - 14:45

Crypto exchanges threats and ways of protection
Tim Bobak, APAC Director of Group-IB

Slide Download

14:45 - 15:30

The vulnerability of blockchain implementation
Dr. SM Yiu, Associate Professor of Computer Science Department in HKU

15:30 - 15:45

Networking Break + Demo

15:45 - 16:15

The latest cyber security landscape in Hong Kong
Frankie Li, Chief Threat Analyst of Dragon Advance Tech Consulting

Slide Download

16:15 - 17:00

Improve Resilience to Cyber Attacks using Intelligence-led Attack Simulations
Vincent Yiu, CEO & Founder of SYON Security

Slide Download

17:00

Closing Remark
Cypri Yu, CEO of Binary Solutions Ltd.

Event Photo



Ilya Sachkov
CEO and Founder of Group-IB

In 2003, as a first-year student at the Bauman Technical University Ilya founded Group-IB together with his classmates. Ever since the company has been pioneering incident response and cybercrime investigation practices in Russia and the CIS.

Group-IB team has been relentlessly gathering and analysing information about cyber criminals and their activity, as well as developing threat data collection tools and other services aimed at proactive threat hunting. These technologies formed the basis of its adversary-centric cybersecurity solutions. In 2014, Gartner named Group-IB among top 7 Threat Intelligence providers in the world. Later, the company introduced TDS (Threat Detection System) – intelligence driven network security solutions for proactive threat hunting and response, and Secure Bank – advanced fraud defense and user authentication technology, currently protecting over 70 million clients of online banking platforms. CERT-GIB (Computer Emergency Response Team) is one of the most experienced CERTs worldwide, with over 55 000 hours of hands-on incident response.

Ilya is one of the 27 prominent independent commissioners for the Global Commission on the Stability of Cyberspace, a member of cybercrime expert committees in the Council of Europe and the OSCE. In 2016, he was featured in the global list of Forbes 30 Under 30 among the brightest young businessmen in "Enterprise Tech" category. In 2015-2017, Ilya was awarded with the EY Entrepreneur of the Year National Award three times in a row in the "Information Security for Business" category.

Dmitry Volkov
CTO, Head of Threat Intelligence Department and co-founder of Group-IB

As a CTO, Dmitry is responsible for all the aspects of the company's technological development and transformation. He has more than 15 years of experience in fighting cybercrime internationally.

Since co-founding Group-IB in 2003, he has been a prominent voice leading the company toward becoming the go-to expert on Russian and international cybercrime. His team successfully conducted the first cyber investigations in Russia. They have identified and helped detain over 150 cyber criminals who targeted public and private companies worldwide.

In 2013, Dmitry Volkov became a member of the UN Open-ended Intergovernmental Expert Group aimed at conducting a comprehensive study on the problem of global cybercrime.

In 2015, Dmitry was listed by Business Insider as one of the top 7 professionals behind influential security companies.

In 2016, he also became a member of the Europol EC3 Advisory Group on Internet Security.

Tim Bobak
APAC Business Development Director of Group-IB

Tim Bobak joined Group-IB in 2016. He is in charge of international business development in Asia and Pacific region. Working closely with forensic lab and analyst team, Tim participates in comprehensive threat intelligence, complex anti-fraud and threat detection. Tim actively shares Group-IB expertise at key cybersecurity and innovation events such as RSA, Slush, MRC, Cyber Security Forum, Information Security Summit and more. Before joining Group-IB, Tim worked investigating fraud and financial crime on international markets. Tim is interested in the intersection of crime and society in the digital realm.

Honorable Charles Mok, JP

Charles Mok is the Legislative Councillor representing the Information Technology Functional Constituency, member of The Professionals Guild. He has been serving the ICT industry for 30 years. He is currently the Vice Chairman of the Professional Commons, Honorary President of the Hong Kong Information Technology Federation and Founding Chairman of the Internet Society Hong Kong.

Charles Mok is dedicated in fostering the development of innovation & technology in Hong Kong. A wide array of issues he pursues include Smart City, nurturing of tech talents, supports to start-ups, STEM education, review of outdated regulations, open data, privacy concerns, Internet freedom and information security.

Charles graduated from Purdue University in the United States with his Bachelor and Master degrees of Science in Computer and Electrical Engineering.

Frankie Li
Director & Threat Analyst of Dragon Advance Tech Consulting

  • Speaker in various security conference, such as US BlackHat, Cyber Security Consortium (HK), HITCON (Taiwan), (ISC)2 Security Congress, and High Tech Crime Investigation Association (HTCIA)
  • Founder of Dragon Threat Labs (http://dragonthreatlabs.org), DragonCon (http://dragoncon.hk)
  • Instructor of the HK Police Cyber Security and Technical Crime Bureau (CSTCB)
  • Lecturer of MSc Reverse Engineering and Malware Analysis class in the University of Hong Kong (HKU)
  • Researching topics:
    • Incident Response & Forensic Investigation
      • Malware Analysis
      • ATM Malware
    • SOC and Security Analytics
    • Cyber Threat Intelligence

Dr. SM Yiu
Associate Professor of Computer Science Department in HKU

Areas of expertise: Computer Security, Cryptography, Bioinformatics
  • Published 100+ papers in referred journals and conferences
  • Conference / programme chairs in prestigious conferences in both areas of cryptography and bioinformatics
  • Current projects in industrial:
    • Bank of China (Hong Kong) – Blockchain applications
    • Vicktor Capital (Asia) Limited – Data mining on financial data
    • Astri (Hong Kong) – Cyber range

Vincent Yiu
CEO, Founder of SYON Security

  • Lead attack simulation projects for many companies ranging from Fortune 10 to Fortune 500, and SMEs. Experiences focused on financial, manufacturing, retail, and aviation industries.
  • World recognized in the offensive cyber security space for advanced adversary simulation services and operating on production infrastructure.
  • Known for spreading offensive cybersecurity experience through the “Red Team Tips” series.
  • Speaker at various security conferences, such as HITB GSEC 2017 and 2018, SSC 2018, JD.com 2017, Steelcon 2017, BSides Manchester 2017, Snoopcon 2017 and 2016.
  • Regular blogger: www.vincentyiu.co.uk
  • On-going development of innovative tools to automate large-scale offensive cyber security simulations: MaiInt, LinkedInt, DomLink, CACTUSTORCH, RDPInception, ANGRYPUPPY, morphHTA, genHTA, and more.
  • Past: Accenture FusionX UK Lead, MDSec ActiveBreach CHECK Team Leader, MWR InfoSecurity.
  • Certifications: OSCP, OSCE, CCT INF.
  • UK National Cybersecurity Challenge Finalist in 2015 (3-day competition).
  • Researching topics:
    • Zero-day vulnerabilities in SOC stack such as ELK, and Splunk.
    • Extensions of Domain Fronting and covert Command and Control.
    • Large-scale cloud security research in significant providers such as Amazon, Azure, and Alibaba.
    • Domain and resource hijacking.
    • EDR bypasses and limitations.
    • Developing practical, relevant, and easy to use tooling.
    • Weaponizing 1-day vulnerabilities.

Cypri Yu
CEO of Binary Solutions Ltd.

Cypri began his career with a large Enterprise-Solution company in Hong Kong, where he was responsible for designing information security and data centers related solutions for customers.

Cypri then joined a global risk consulting company working across Asia Pacific as an Information Security Consultant. He was responsible for a variety of Computer Forensic investigation projects and information security projects, including but not limited to lawful on-site digital evidence acquisition, computer and mobile phones forensics investigations, advising clients on how to protect their sensitive information, auditing credit card processing systems, providing information security risks assessments for banks, online intelligence gathering and investigations, computer networks vulnerability assessment and penetration tests, etc.

He then joined one of the Big 4 accounting firms in the world to assist the Director of Analytic and Forensic Technology to lead the computer forensic and eDiscovery practice in Hong Kong.

    Selected projects handled:
  • Compromised system credentials leading to transferring of funds to criminals
  • Security incident caused by a resigned (and disgruntled) employee
  • Staff installing key logger to capture top management's user credential

Douglas W. Arner
Kerry Holdings Professor in Law, University of Hong Kong

Douglas W. Arner is the Kerry Holdings Professor in Law at the University of Hong Kong and one of the world’s leading experts on financial regulation, particularly the intersection between law, finance and technology. He is Faculty Director of the Faculty of Law’s LLM in Compliance and Regulation and LLM in Corporate and Financial Law, a member of the Hong Kong Financial Services Development Council, an Executive Committee Member of the Asia Pacific Structured Finance Association, and a Senior Visiting Fellow of Melbourne Law School, University of Melbourne. He led the development of Asia’s first massive open online course (MOOC): Introduction to FinTech, launched on edX in May 2018 and which now has over 30,000 registered from every country in the world. Douglas served as Head of the HKU Department of Law from 2011 to 2014 and as Co-Director of the Duke University-HKU Asia-America Institute in Transnational Law from 2005 to 2016. From 2006 to 2011 he was the Director of HKU’s Asian Institute of International Financial Law, which he co-founded in 1999, and from 2012 to 2018, he led a major research project on Hong Kong’s future as a leading international financial centre. He has published fifteen books and more than 120 articles, chapters and reports on international financial law and regulation, including most recently Reconceptualising Global Finance and its Regulation (Cambridge 2016) (with Ross Buckley and Emilios Avgouleas). His recent papers are available on SSRN at https://papers.ssrn.com/sol3/cf_dev/AbsByAuth.cfm?per_id=524849 , where he is among the top 300 authors in the world by total downloads. Douglas has served as a consultant with, among others, the World Bank, Asian Development Bank, APEC, Alliance for Financial Inclusion, and European Bank for Reconstruction and Development, and has lectured, co-organised conferences and seminars and been involved with financial sector reform projects around the world. He has been a visiting professor or fellow at Duke, Harvard, the Hong Kong Institute for Monetary Research, IDC Herzliya, McGill, Melbourne, National University of Singapore, University of New South Wales, Shanghai University of Finance and Economics, and Zurich, among others.

Platinum Sponsors

         Group-IB: Cybersecurity products and services provider company
        

Sponsors

         Dragon Advance Tech Consulting Co. Ltd.
        

Supporting Organization

         Asian Institute of International Financial Law
        
        
         FinTech Association of Hong Kong
        

Organizer

         Binary Solutions Ltd.
        

Co-Organizer

         Department of Computer Science
University of Hong Kong
        

Copyright © 2018 FinSecCon