Last day to get an iPad Air w/ Smart Keyboard or Pixel 4a Smartphone with 5-6 day course registration! View details.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Real World Phishing & Exploitation

  • Thursday, September 08, 2016 at 8:00 PM EST (2016-09-09 00:00:00 UTC)
  • Phillip Bosco

You can now attend the webcast using your mobile device!



Many organizations contain hardened external infrastructures that successfully block many common attacks; however, attackers are using clever phishing emails to penetrate an organization's technical controls and obtain a foothold in the target's internal network. This presentation covers the basics of phishing email attacks and the common methods and tactics that an attacker may use to not only trick your employees to open a malicious email, but also sidestep many of the technical controls currently in place. We will take an inside look through the eyes of an attacker to better defend against the high risk threat that phishing emails pose to an organization.

Speaker Bio

Phillip Bosco

Phillip possesses over 10 years of experience information security via both commercial and government positions. While currently employed as a Senior Security Consultant for Rapid7, Phillip's previous employment includes the United States Marine Corps as a Cyber Marine and both CSC and KCG as a penetration tester. Phillip is active in research, focusing primarily on social engineering and physical security. During his research into home security systems, he discovered a flaw that allows malicious individuals to break into a house without triggering an alarm and the attack works against multiple vendors. His discovery has captured the media's attention by such publications as Wired Magazine, Washington Times, NetworkWorld, ArsTechnica, ZDNet, CSO Online, InfoSecurity Magazine, The Verge, and more. Phillip holds the following information security credentials: OSCP, OSWP, CISSP, GSEC (Gold), GCIA (Gold), GPEN, GWAPT, GCIH, CCNA (DoD) CEH, ECSA, CNDA, A+, Network+, Security+.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.