Unraveling and Countering Adversary-in-the-Middle (AiTM) Phishing Attacks

Dive into a comprehensive 43-minute conference talk that examines the critical landscape of Adversary-in-the-Middle (AiTM) phishing attacks and defense strategies. Learn about various AiTM phishing kits delivered as a Service model, including Evilproxy, NakedPages, Evilginx, OneDriveX, Greatness, and Caffeine, while understanding their features and how attackers use them to impersonate trusted entities. Explore real-world case studies of successful AiTM attacks, analyze attack patterns, and discover early warning signs for prompt threat identification. Master advanced detection and prevention techniques, including Automatic Attack Disruption, and gain practical insights into implementing robust security measures such as Conditional Access policy settings and phish-resistant MFA. Benefit from expert knowledge in analyzing AiTM phishing kits and developing innovative detection methods to effectively protect digital assets against these evolving cybersecurity threats.