Exploits in Wetware
Offered By: BruCON Security Conference via YouTube
Course Description
Overview
Explore the world of social engineering attacks in this eye-opening conference talk from BruCON Security Conference. Delve into Robert Sell's third-place experience at the Defcon 2017 SE CTF, showcasing the alarming ease of obtaining sensitive information from organizations. Examine the dramatic growth of social engineering attacks as reported in the 2017 Verizon report. Learn about OSINT techniques used to gather hundreds of data points on target organizations, including VPN details, OS information, patch levels, and executive personal data. Discover vishing strategies employed to maximize point collection in time-constrained contests. Uncover tricks of the trade, such as the "incorrect confirmation" method, designed to extract information from targets. Analyze various pretexts crafted to attack companies and the emotional responses they aim to trigger. Consider the potential consequences of social engineering attacks, including financial losses and organizational repercussions. Conclude with practical strategies for reducing exposure and risk, covering current vulnerabilities, building robust defenses, adopting offensive measures, and implementing crucial cultural shifts within organizations.
Syllabus
18 - BruCON 0x0A - Exploits in Wetware - Robert Sell
Taught by
BruCON Security Conference
Related Courses
Security Principles(ISC)² via Coursera Emergency and Disaster Training and Exercising: An Introduction
Coventry University via FutureLearn A General Approach to Risk Management
University System of Georgia via Coursera A Strategic Approach to Cybersecurity
University of Maryland, College Park via Coursera Academia de auditoría en la nube: independencia en la nube (Español LATAM) | Cloud Audit Academy - Cloud Agnostic (Spanish from Latin America)
Amazon Web Services via AWS Skill Builder