Nektarios Leontiadis

About me

Current

I am a Threat Research Scientist at Facebook. I joined the team in 2014, after obtaining my PhD from Carnegie Mellon University. Since then, I has been working on providing a better understanding of the threat ecosystem targeting Facebook users. This understanding involves building and refining signals of compromise, as well as evaluating Facebook's user remediation systems. I investigate threats targeting our platform and our users, in an effort to understand the underlying mechanics and economics of the illicit activities.

Previous

In August 2014 I received a PhD in Engineering and Public Policy (EPP) from Carnegie Mellon University. I worked on empirical measurements and economic modeling of online crime, towards understanding and structuring effective countermeasures. The title of my PhD thesis is Structuring Disincentives for Online Criminals. In this effort I was fortunate to be advised by Nicolas Christin and funded by CyLab.

Recent publications

  • L. DeKoven, T. Pottinger, S. Savage, G. Voelker, N. Leontiadis. Following Their Footsteps: Characterizing Account Automation Abuse and Defenses. In Proceedings of the 18th Internet Measurement Conference (IMC'18). Boston, MA, USA. November 2018. [paper]
  • S.Farooqi, F. Zaffar, N. Leontiadis, Z. Shafiq. Measuring and Mitigating OAuth Access Token Abuse by Collusion Networks. In Proceedings of the 17th Internet Measurement Conference (IMC'17). London, UK. November 2017. [paper]
  • L. DeKoven, S. Savage, G. Voelker, and N. Leontiadis. Malicious Browser Extensions at Scale: Bridging the Observability Gap between Web Site and Browser. In Proceedings of 10th USENIX Workshop on Cyber Security Experimentation and Test (CSET'17). Vancouver, Canada. August 2017. [paper]
  • N. Leontiadis, and A. Hutchings. Scripting the crime commission process in the illicit online prescription drug trade. Journal of Cybersecurity, 2015. [paper]
  • N. Leontiadis, T. Moore, and N. Christin. A Nearly Four-Year Longitudinal Study of Search-Engine Poisoning. In Proceedings of the 21st ACM Conference on Computer and Communications Security (CCS'14). Scottsdale, Arizona. November 2014. [paper]
  • N. Leontiadis, and N. Christin. Empirically measuring WHOIS misuse. In Proceedings of the 19th European Symposium on Research in Computer Security (ESORICS'14). Wroclaw, Poland. September 2014. [paper]
  • N. Leontiadis. Structuring Disincentives for Online Criminals. PhD Thesis. Carnegie Mellon University. August 2014.
    • Nominated for the ACM Doctoral Dissertation award.
    • [thesis]
  • N. Leontiadis, and N. Christin. WHOIS Misuse Study. ICANN, March 2014. [report, ICANN]
  • N. Leontiadis, T. Moore, and N. Christin. Pick Your Poison: Pricing and Inventories at Unlicensed Online Pharmacies. In Proceedings of the 14th ACM Conference on Electronic Commerce (EC'13), pages 621-638. Philadelphia, PA. June 2013. [paper]
  • T. Moore, N. Leontiadis, and N. Christin. Fashion Crimes: Trending-Term Exploitation on the Web. In Proceedings of the 18th ACM Conference on Computer and Communications Security (CCS'11), pages 455-466. Chicago, IL. October 2011. [paper]
  • N. Leontiadis, T. Moore, and N. Christin. Measuring and Analyzing Search-Redirection Attacks in the Illicit Online Prescription Drug Trade. In Proceedings of the 20th USENIX Security Symposium (USENIX'11), pages 281-298. San Francisco, CA. August 2011. [paper]

Academic service

  • Facebook Fellowship and Emerging Scholar Award Committee member (2015-2018)
  • Facebook Secure the Internet Grant Committee member (2018).
  • 13th IEEE Symposium on Electronic Crime Research (eCrime 2018). PC Member
  • ACM Transactions on Privacy and Security. Reviewer (2018)
  • 2018 Network and Distributed System Security Symposium (NDSS). PC Member
  • 26th USENIX Security Symposium 2017. Posters PC Member
  • 12th Symposium on Electronic Crime Research (eCrime) 2017. PC member.
  • Journal of Qualitative Criminal Justice and Criminology. Reviewer.
  • 25th USENIX Security Symposium 2016. PC member.
  • 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DNS) 2016. PC member.
  • 15th Workshop on the Economics of Information Security (WEIS) 2016. PC member.
  • ACM Transactions on Information and System Security (TISSEC). Reviewer.
  • 7th Workshop on Simplifying Complex Networks for Practitioners (SIMPLEX) 2014. PC member.
  • 23rd USENIX Security Symposium 2014. External reviewer.
  • 27th Computer Security Foundations Symposium (CSF) 2014. External reviewer.
  • 6th Workshop on Simplifying Complex Networks for Practitioners (SIMPLEX) 2014. PC member.
  • 35th IEEE Symposium on Security and Privacy (Oakland) 2014. External reviewer.
  • 12th Workshop on the Economics of Information Security (WEIS) 2013. External reviewer.

My PGP key details:

2048R/A8D6F5EC 2011-10-06

Fingerprint = 85E1 A087 B5C9 901B 7045 433B 381B EC5E A8D6 F5EC

The key