Discover how vulnerabilities, misconfigurations, and lack of security awareness could lead to successfully social engineering. This talk will discuss:
- Vulnerabilities – If left unpatched lead to risks
- Misconfigurations – Exposing users or public endpoints without 2fa
- Session theft – Session stealing through phishing or post-exploitation (e.g. dumping chrome cookies)
- Social engineering – Repeatedly spamming users or simply asking users for the 2FA token