ISACA - Psychology of the Phish: Leveraging the 7 Principles of Influence | Sourya Biswas, NCC Group
Event date 4 May 2021 – 6 May 2021
Join NCC Group's Sourya Biswas for Psychology of the Phish: Leveraging the 7 Principles of Influence on May 6 at ISACA!
According to the X-Force Threat Intelligence Index 2020, produced by IBM X-Force Incident Response and Intelligence Services, phishing is still the number one attack vector in use today. Security professionals often overlook the "social" aspect of "social engineering", focusing on tool deployment instead.
The success of phishing is predicated on exploiting normal human behavior for nefarious purposes. This session looks at phishing through this psychological lens, specifically on how the Seven Principles of Influence as expounded by Robert Cialdini are leveraged by attackers.
After completing this session, the participant will be able to:
- Understand how phishers leverage psychology; by understanding the mind of the attacker, they can devise better protections for their environments.
- List multiple security controls to combat phishing, leveraging the concept of Defense in Depth.
- Learn from the mistakes that I have encountered, both as an operator and a consultant, and the product-agnostic solutions that worked.
- Build a phishing prevention program that works.