BSidesIOWA 2015 Track1: Anatomy of a Full Scale Social Engineering Attack by Dave Nelson

This session will show how to perform a full scale social engineering attack against an organization using multiple attack vectors over an extended period of time to gain knowledge, insight and a physical foothold in the targeted organization. According to the 2014 VDBIR 35% of reported attacks had a social engineering aspect to the attack. We often hear about phishing but rarely do we see how a coordinated social engineering attack can so completely compromise an organization. Attendees will learn how attack vectors can be used to build a complex attack campaign against which there is no technical fix. Only through awareness and training of our end users can we hope to slow or stop these attacks.