Spear Phishing: from LinkedIn to logged in presented at SecuriTay 2018

by Alex Archondakis,

Summary : Spear phishing is on the rise, and the more our lives are displayed online, the more information a hacker has to target us. This talk will describe our journey for a spear phishing attack, detailing how to pick and research vulnerable targets via social media, and then how to construct emails based on the information discovered. Finally, we will demonstrate a typical spear phishing attack and the access a hacker could expect to obtain following a successful campaign.We will use real-life case studies from social engineering engagements, supported with statistics from the attacks and the resulting real-world consequences.After this talk attendees will understand:The effectiveness of social media in planning spear phishing attacksHow to recognise common spear phishing attack vectorsHow to protect themselves and their organisation against spear phishing