About this webinar
Our engineer, Antonio Soriano, will give a brief tour of Varonis for Office 365, execute the attack, and show you how to use DatAlert to detect and respond.
Watch this webinar to see how...
- We trick a user into entering creds into our fake O365 login page (made with evilginx)
- We make Microsoft send a passcode to the user’s phone
- User enters their passcode on OUR fake page
- We hijack the user’s session token
- Gain access to SharePoint Online environment
- Exfiltrate data from O365
- Pivot to on-prem and steal CEO’s emails (because why not?)
Antonio Soriano Engineer, Varonis
Antonio possesses over 19 years of experience in ICT focusing on IT Security, IT Infrastructure and R&D Lab. For the past 7 years, Antonio has been focusing on helping organizations address the business issues with respect to data privacy, security, and management in APAC and South Korea region. Prior to joining Varonis, he has previously held positions in Dell/EMC (Singapore), Wincor-Nixdorf (Singapore) and Jollibee Foods Corporation (Philippines) from end-user, technical lead to infra manager.
