Phish like an APT

Explore the sophisticated phishing strategies employed by Advanced Persistent Threats (APTs) in this 50-minute conference talk from Ekoparty 2021's Red Zone Space. Gain insights into the techniques, tactics, and procedures used by real-world APTs, comparing them to typical Red Team and social engineering scenarios. Analyze hundreds of phishing emails from actual campaigns, examining their characteristics, influence methods, tone of speech, and technologies. Learn how to measure and classify phishing campaign designs, ranging from "obvious spam" to "near-realistic original mail." Discover how different APT groups operate and the effort they invest in their scenarios, valuable knowledge for both attackers and defenders. Presented by Sanne Maasakkers, a security expert from Fox-IT's Red Team and Strategic Threat Intelligence team, this talk offers a unique perspective on advanced phishing techniques and their effectiveness in cybersecurity operations.

Phish like an APT ▪ Sanne Maasakkers ▪ Ekoparty 2021: Red Zone Space