I am a Security Engineering Manager at Facebook. I support a distributed team of highly skilled engineers who work on systems and infrastructure that provide a range of capabilities for security investigations.
I joined the company in 2014 as a Threat Research Scientist working on providing a better understanding of the threat ecosystem targeting Facebook users. This understanding involved building and refining signals of compromise, as well as evaluating Facebook's user remediation systems. I worked on investigating threats targeting our platform and our users, in an effort to understand the underlying mechanics and economics of the illicit activities.
In August 2014 I received a PhD in Engineering and Public Policy (EPP) from Carnegie Mellon University. I worked on empirical measurements and economic modeling of online crime, towards understanding and structuring effective countermeasures. The title of my PhD thesis is Structuring Disincentives for Online Criminals. In this effort I was fortunate to be advised by Nicolas Christin and funded by CyLab.
J. Onaolapo, N. Leontiadis, D. Magka, G. Stringhini. SocialHEISTing: Understanding Stolen Facebook Accounts. In proceedings of the 30th USENIX Security Symposium (USENIX'21). Virtual due to COVID-19. August 2021. [paper]
L. DeKoven, T. Pottinger, S. Savage, G. Voelker, N. Leontiadis. Following Their Footsteps: Characterizing Account Automation Abuse and Defenses. In Proceedings of the 18th Internet Measurement Conference (IMC'18). Boston, MA, USA. November 2018. [paper]
S.Farooqi, F. Zaffar, N. Leontiadis, Z. Shafiq. Measuring and Mitigating OAuth Access Token Abuse by Collusion Networks. In Proceedings of the 17th Internet Measurement Conference (IMC'17). London, UK. November 2017. [paper, Best paper award, CACM Research Highlight]
L. DeKoven, S. Savage, G. Voelker, and N. Leontiadis. Malicious Browser Extensions at Scale: Bridging the Observability Gap between Web Site and Browser. In Proceedings of 10th USENIX Workshop on Cyber Security Experimentation and Test (CSET'17). Vancouver, Canada. August 2017. [paper]
N. Leontiadis, and A. Hutchings. Scripting the crime commission process in the illicit online prescription drug trade. Journal of Cybersecurity, 2015. [paper]
N. Leontiadis, T. Moore, and N. Christin. A Nearly Four-Year Longitudinal Study of Search-Engine Poisoning. In Proceedings of the 21st ACM Conference on Computer and Communications Security (CCS'14). Scottsdale, Arizona. November 2014. [paper]
N. Leontiadis, and N. Christin. Empirically measuring WHOIS misuse. In Proceedings of the 19th European Symposium on Research in Computer Security (ESORICS'14). Wroclaw, Poland. September 2014. [paper]
N. Leontiadis. Structuring Disincentives for Online Criminals. PhD Thesis. Carnegie Mellon University. August 2014.
Nominated for the ACM Doctoral Dissertation award.
N. Leontiadis, and N. Christin. WHOIS Misuse Study. ICANN, March 2014. [report, ICANN]
N. Leontiadis, T. Moore, and N. Christin. Pick Your Poison: Pricing and Inventories at Unlicensed Online Pharmacies. In Proceedings of the 14th ACM Conference on Electronic Commerce (EC'13), pages 621-638. Philadelphia, PA. June 2013. [paper]
T. Moore, N. Leontiadis, and N. Christin. Fashion Crimes: Trending-Term Exploitation on the Web. In Proceedings of the 18th ACM Conference on Computer and Communications Security (CCS'11), pages 455-466. Chicago, IL. October 2011. [paper]
N. Leontiadis, T. Moore, and N. Christin. Measuring and Analyzing Search-Redirection Attacks in the Illicit Online Prescription Drug Trade. In Proceedings of the 20th USENIX Security Symposium (USENIX'11), pages 281-298. San Francisco, CA. August 2011. [paper]
13th Workshop on Cybersecurity Experimentation and Test (CSET 2020). PC Member
Journal of Computers & Security. Reviewer (2020)
ACM Transactions on Privacy and Security. Reviewer (2018, 2019, 2020)
Facebook Fellowship and Emerging Scholar Award Committee member (2015-2019)
Facebook Secure the Internet Grant Committee member (2018).
13th IEEE Symposium on Electronic Crime Research (eCrime 2018). PC Member
2018 Network and Distributed System Security Symposium (NDSS). PC Member
26th USENIX Security Symposium 2017. Posters PC Member
12th Symposium on Electronic Crime Research (eCrime) 2017. PC member.
Journal of Qualitative Criminal Justice and Criminology. Reviewer.
25th USENIX Security Symposium 2016. PC member.
46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DNS) 2016. PC member.
15th Workshop on the Economics of Information Security (WEIS) 2016. PC member.
ACM Transactions on Information and System Security (TISSEC). Reviewer.
7th Workshop on Simplifying Complex Networks for Practitioners (SIMPLEX) 2014. PC member.
23rd USENIX Security Symposium 2014. External reviewer.
27th Computer Security Foundations Symposium (CSF) 2014. External reviewer.
6th Workshop on Simplifying Complex Networks for Practitioners (SIMPLEX) 2014. PC member.
35th IEEE Symposium on Security and Privacy (Oakland) 2014. External reviewer.
12th Workshop on the Economics of Information Security (WEIS) 2013. External reviewer.
My PGP key details:
Fingerprint = 85E1 A087 B5C9 901B 7045 433B 381B EC5E A8D6 F5EC