Loading...
This Session has ended

Attack. Persist. Exfiltrate. Repeat.

18th Oct 11:00am - 11:40am BST Pioneer 2 (Ground Floor)
47 attended
Session Description

Cyber attacks have become increasingly sophisticated, often targeting users through collaboration tools like Microsoft Teams. Attackers leverage techniques like AiTM (Adversary-in-the-Middle) to steal user credentials and execute automated data exfiltration before defenders even realise what’s happening. Organisations need to understand these emerging threats and how to defend against them effectively using Microsoft technologies.

What will be covered:
- How Teams phishing and social engineering attacks can unfold and mitigation techniques using Teams, and Defender for Office 365.
- Credential theft through AiTM reverse proxy attacks and the role that Conditional Access, Entra ID and Defender XDR has in mitigating these threats.
- Potential attacker footholds (persistence), how you can limit and proactively threat hunt for potential attempts.
- How to effectively configure Privileged Identity Management to stop privilege escalation in it's tracks.
- Automated data exfiltration and how Microsoft Purview and Defender for Cloud Apps provide visibility and protection.

By joining this session, attendees will gain a practical understanding of how cyber attacks evolve through phishing, session theft, and data exfiltration. They will learn how to deploy Microsoft’s security solutions to detect, prevent, and mitigate these threats, strengthening their defences against real-world attacks.

Products:
Defender for Office 365, Defender for Endpoint, Defender for Cloud Apps, Defender for Identity, Entra Identity Protection, Conditional Access, Privileged Identity Management, Microsoft Information Protection.

Attendees (47)
Fraser Cumming
Senior Support Analyst at Quorum
Pete Cullen
Principal Security Architect at Atech
Nathan Hutchinson
Microsoft Solutions Architect at Threatscape
Andy Dean
Chief Cloud & AI Architect at Microsoft
David Trevallion
Modern Work Solution Architect at The Access Group
Rob Unger
Principal Security Architect at Transparity
Dan Robinson
Technical Manager at Foundation IT
Sophia Dukhota
Junior D365 Developer at Openwork Partnership
Charlie Gough
Head of Cloud Solutions / Security MVP at Brightsolid
Jodie Lawrance
Senior Consultant at Perspicuity
Julian Fox
CEO & Founder at Techrelate Ltd
Dave Lee
Product Architect at SCC
Foz Jan
D365 Consultant at Conspicuous Ltd
Alex Patrick
IT Strategy at Free Agent
Dave Henderson
IT Support Analyst at Quorum Network Resources Ltd
Ian Hook
.NET Developer at Binary IS Limited
+31 other Attendees