Principal Threat Researcher at SentinelOne
Juan Andrés Guerrero-Saade is Principal Threat Researcher at SentinelOne and an Adjunct Professor of Strategic Studies at Johns Hopkins School of Advanced International Studies (SAIS). Juan Andrés was Chronicle Security's Research Tsar, founding researcher of the Uppercase team, and a stealth startup co-founder. Prior to joining Chronicle, he was Principal Security Researcher at Kaspersky's GReAT team focusing on targeted attacks and worked as Senior Cybersecurity and National Security Advisor to the Government of Ecuador. His joint work on Moonlight Maze is now featured in the International Spy Museum's permanent exhibit in Washington, DC.
The Russian invasion of Ukraine has included a wealth of cyber operations that have tested our collective assumptions about the role of cyber in modern warfare. The concept of 'Cyber War' has been the subject to fantastic aberrations fueled by eager commentators unfamiliar with the realities and constraints of real world cyber. From the beginning of 2022, that reality includes operations aimed at sabotaging critical infrastructure and military command-and-control. The arsenal in question contains at least a dozen novel novel strains of wiper malware targeting Ukraine, including a wiper used to attack satellite modems with spillover effects on critical infrastructure in Western Europe. Against a historical backdrop where nation-state wiper malware was relatively rare, this unfortunate period of abundance contains valuable lessons on the effects attackers can(|'t) have during military operations and what we should realistically expect in an era of hybrid warfare with cyber components.