How We Hacked Your Billion Dollar Company For Forty-Two Bucks

Discover the shocking vulnerabilities in corporate cybersecurity as a seasoned hacker reveals how they breached a billion-dollar company's defenses for just $42. This eye-opening 29-minute conference talk from Security BSides London exposes common weaknesses in perimeter security, user enumeration, and password policies. Learn about powerful tools like Mail Sniper and Selenium, and explore techniques such as password spraying and phishing. Gain insights into exploiting hybrid identity management systems, MFA suites, and Exchange servers. Walk through real-world examples and understand the true costs of inadequate security measures. Equip yourself with essential knowledge to fortify your organization's defenses against sophisticated yet surprisingly affordable cyber attacks.

Intro
Outline
Red Team
Perimeter
Costs
User Enumeration
Password Spray
First Example
Mail Sniper Tools
We didnt need to be patient
Another example
Selenium
Brewer
Phishing
Router Dash
Hybrid ID
MFA Suite
Exchange
Conclusion