Can we avoid blaming the user by stopping a phishing campaign before it is even launched? Well, this talk will discuss multiple techniques to detect and block the attack before the mail lands in the inbox of your employee. By first analysing how Red Teams and adversaries set up phishing campaigns, we zoom in on what OPSEC mistakes can be used to the advantage of Blue teams. We define techniques to detect malicious domains that are targeting your organisation and further use NetLoc intelligence to correlate these to related threat infrastructure. Based on the defence-in-depth principles, Blue Teams can implement additional security controls to prevent mails from reaching the inbox of their organisation. Through practical demos and real-life examples, attendees will learn how to block adversaries during multiple stages of a phishing campaign.

About the speaker

Wout Debaenst

Security Consultant and Founder at Compound C

Wout Debaenst is the founder of Compound C, a cybersecurity startup offering offensive and defensive phishing courses. Wout previously worked as a Red Team Operator at NVISO and EY and specialised in the simulation of Advance Persistent Threat (APT) groups that might target your organisation. Outside of passionately teaching how to make his job harder, he is an avid traveller with a love for extreme sports like parkour and free-diving.
Read more …