Presented at
BSidesSF 2015,
April 20, 2015, noon
(60 minutes)
This talk will take a look at modern phishing campaigns and how they have evolved from simple generic HTML based sites attempting to grab login credentials to full dynamic sites that almost flawlessly mirror the real ones attempting to gather login credentials, credit card information, and social security numbers. Topics covered will include discovered IoC's, various kits for sale, detection methods, top companies spoofed, and potential victim loss.
Presenters:
-
Kevin Bottomley
- Security Analyst - OpenDNS
Kevin Bottomley is a Security Analyst on the OpenDNS Research team. Throughout the course of the day, Kevin undertakes roles from creating Security Threat Reports for existing and potential clients, working closely with the Customer Support Team, finding new threats and attacks, and devising tactics to track down and identify nefarious actors and malicious domains. Kevin earned an Associate in Science degree from City College of San Francisco in Computer Networking and Information Security, and has earned various certificates along the way.
Past talking events include BSidesSF 2015, BSidesLA 2015, NASA Ames Security Week, and BSidesNYC 2016.
Links: