Explore Google's groundbreaking research on phishing attacks and credential theft in this 32-minute conference talk from BSidesSF 2018. Delve into the findings of a longitudinal study that uncovered 12.4 million potential phishing victims and 1.9 billion exposed credentials. Discover the alarming statistic that 7-25% of stolen passwords could grant attackers access to victims' Google accounts. Learn about effective mitigation strategies, including user education, anti-virus software, two-factor authentication, password managers, and security keys. Examine the benefits of advanced login protection techniques that analyze user behavior and device profiles. Gain insights from live demonstrations of phone slamming and phishing kits, and participate in a discussion on various prevention methods. Leave with a customized phishing scorecard tailored to your specific user environment, equipping you with valuable knowledge to combat this pervasive online threat.
Overview
Syllabus
BSidesSF 2018 - What We Can Learn from Google’s Fight with Phishing (Neal Mueller)
Taught by
Security BSides San Francisco