This talk will take a look at modern phishing campaigns and how they have evolved from simple generic HTML based sites attempting to grab login credentials to full dynamic sites that almost flawlessly mirror the real ones attempting to gather login credentials, credit card information, and social security numbers. Topics covered will include discovered IoC's, various kits for sale, detection methods, top companies spoofed, and potential victim loss.

Kevin studied Information Technology at City College of San Francisco with an emphasis on Network Security. He is currently a Security Analyst at OpenDNS.

Back to BSides San Francisco 2015 video list