With over two decades in the industry, JC Carruthers is the president of Snowfensive, a cybersecurity consultancy based in Salt Lake City, Utah, providing clients with a wide range of offensive and defensive service offerings. JC is a United States Marine Corps veteran and has previously worked at various defense contractors and infosec consultancies. He co-founded the Social Engineering Community, a DEF CON village, and is an annual trainer at Black Hat US. When JC isn’t hacking the planet, you can find him watching 80’s movies with his family and birds.
Be sure to catch JC’s talk at ShowMeCon!
___________________________________________________________________________________________________
Game of Phishes: Tales, tactics and troubles from almost a decade of BEC investigations
The frequency and impact of Business Email Compromises (BEC) have continuously increased over the years and are still very successful (and lucrative) for attackers. JC has been responding to these BEC incidents for almost a decade for companies in almost every industry as well as for high-net-worth individuals. During this presentation, JC will take you on a journey in the trenches as he breaks down the various ways BECs usually occur, including showcasing some novel phishing pretexts and techniques that attackers use today and how they’re getting past your filters. He’ll also discuss things organizations get right and how they get it wrong when trying to deal with a BEC internally. Lastly, JC will discuss how these compromises can impact organizations and how they leave teams scrambling. Throughout this talk, there will be plenty of recommendations you can learn from to improve your own organization’s security program.