Phishing: A Direct Deposit to the Criminal World

No ratings

Presented at SecureWorldExpoStLouis 2014 by

Brian Allen

In the fall of 2013, Washington University in St. Louis was hit with a phishing attack targeted primarily at medical faculty. The criminals used the compromised credentials to change direct deposit bank account information to steal money. The University quickly made changes to defend against this threat and rethought the current incident response capabilities to better handle widespread attacks. In this presentation, we will walk through the incident to see how and why it was successful and will discuss steps to detect and prevent these types of incidents.