Social-Engineer, Inc. Announces DEF CON 22 Capture the Flag Results in a Complimentary Webinar

Share Article

DEF CON is an annual hacker convention in Las Vegas. One of the staples of this convention is the Social-Engineering Capture the Flag (SECTF). The creators of the SECTF are hosting a free webinar to discuss the report and answer any questions.

Social-Engineer.Org

Social Engineering is without a doubt the largest threat to organizations.

Social-Engineer, Inc. the leader in security testing and awareness through social engineering announced today it will host a complimentary webinar on Friday, October 31, at 1:00PM ET. The webinar will reveal the final outcome of the annual Social-Engineer Capture the Flag (SECTF) competition held at DEF CON 22 in Las Vegas and explore how to maximize security and employee performance to prevent evolving social engineering attacks. To register for the webinar go to: Free Webinar Registration.

As one of the most prominent events at DEF CON Hacking Conference in Las Vegas, the SECTF contest is conducted to raise awareness for the growing threat social engineering poses and to provide a live demonstration of specific techniques commonly used by malicious attackers to siphon information.

“Social Engineering is without a doubt the largest threat to organizations,” said Chris Hadnagy President and CEO of Social-Engineer. “Today’s organizations require awareness and training to ensure that employees do not fall victim to sophisticated phishing attacks where mission-critical information is gained.”

This year’s competition featured 9 teams of 2 contestants from diverse backgrounds and experience levels testing social engineering abilities against 9 large corporations including Wal-Mart, Home Depot, CVS, and Macy’s.

During the SECTF, contestants attempt to capture “flags” – specific pieces of information considered to be of value to most businesses. In the preliminary portion of the competition, contestants were given three weeks to gather as much intelligence as possible about an assigned company, leveraging only open-source information. During this information-gathering phase, contestants had the opportunity to capture as many of the pre-defined flags as possible without contacting the company or its employees.

Contestants then performed a live call portion of the event during DEF CON 22 leveraging pretexts established in the information-gathering phase. The contestants telephoned employees of assigned companies to elicit as much information as possible. This year’s competition added greater complexity by requiring contestants to work in teams of 2, necessitating the development of pretexts that allowed them to hand off calls without arousing undue suspicion.

This live webcast will focus on team performance, specific attack vectors leveraged in the competition and best practices for defending against them. In addition to the webinar, Social-Engineer will also release an annual SECTF report on Monday, October 27th. The report will provide a detailed outline of the process contestants must undergo, team performance, flags obtained, and an overall security score for each targeted company.

What: Social-Engineer DEF CON 22 Capture the Flag Post-Mortem
When: Friday, October 31, 1 PM ET/10 AM PT
Hosted by: Chris Hadnagy, Chief Human Hacker and Michele Fincher, Chief Influencing Agent, Social-Engineer, Inc.

Register: Online; visit https://attendee.gotowebinar.com/register/6186215618227639809 to register, attend, and review further information

About Social-Engineer, Inc. – Security testing, awareness and training
Social-Engineer, Inc. is the leading authority in the art and science of social engineering. Social-Engineer, Inc is compromised of two different areas, free education and commercial services. The free educational component of the organization, Social-Engineer.org, was developed as the world’s first social engineering framework and provides the latest social engineering news and research through our blog and monthly podcast. Social-Engineer Inc, provides professional training and security testing for customers in government and private industry through our commercial site, Social-Engineer.Com .

Share article on socal media or email:

View article via:

Pdf Print

Contact Author

Christopher Hadnagy
@humanhacker
since: 06/2009
Follow >
Social-Engineer
Like >
Social-Engineer, Inc.

Visit website