Approved for 1 CompTIA CEU: A+, Network+, Security+, Cloud+, CySA+, CASP, PenTest+, & Linux+; 1 CertNexus CFR CEC; 1 GIAC CPE
Because it can be so lucrative, malware has emerged as a favorite of attackers who have turned cybercrime into a big-money endeavor. Learn how threat actors are targeting organizations with frightening effectiveness by researching their human targets before launching a malware attack. Once the victim is chosen and the malware deployed, the threat actor remains connected, lurking on victims' computers until they can grab banking details, credit card data, and other sensitive information. This session shows how attackers know their victims and targets better than they know themselves.
Overview of the threat landscape followed by an understanding of how and why attackers choose their targets. This session will dig deep into the criminal underground to show how people are the most common targets. Once an attacker has chosen the victim organization or individual, they leverage malware attacks via various methods to gain access to further internal information and compromise their target. The session will show volume data around how threat actors deliver their attacks, how they choose targets and what those attacks look like with 2-3 attack walk throughs included for step-by-step understanding.
Objectives:
After completing this session, learner will have a deeper understanding of attacks against individuals leveraging a combination of social engineering and malware to gain access to their target organizations.
- Understand how attackers research humans and target them
- Learn why people are more vulnerable than systems
- See how attackers make choices about their attacks
- For infosec ops teams, see how to focus your attention on your most attacked people