As security organizations have come to value the impact of programs designed to change employee behavior, we have continued to largely ignore the humanity of the attacker. In this presentation Aaron Higbee will examine how the attackers are obsessively focused on the technology involved in phishing attacks, but are lacking some of the human skills needed to build compelling phishing stories. While our malware analysts are hunting for C2, and IOCs, perhaps the phishing email content we are tossing into the bitbucket can aid prevention by offering clues into common attack patterns.
October 22, 2014 | Tech 1 (Hall G) | 13:25 – 14:25