2025-06-21 –, Track 3 (Moody Rm. 102)
W. Garrett Myler has successfully used the Flipper Zero to trick dozens of people into giving him their credentials or other sensitive information. You'll be shocked by the demographics (and training!) of those he social engineered. Garrett will show you how he used the Flipper Zero and evil portals to conduct his research and what individuals and companies should do to avoid being victims themselves.
I will briefly introduce the Flipper Zero and evil portal attacks including a live demonstration in which audience members can connect to an evil portal and input and see the captured input. I will then share the demographics of the approx. 40 people caught during the research including ages, occupations, and industry certificates (CEH, etc.) including nearly a dozen members of the Air Force. I will conclude by highlight the fact that the extensive intelligence and cybersecurity training of those who fell victim to my evil portal attacks highlights that cyber awareness training is NOT a sufficient risk mitigation and should be accompanied by technical controls; namely, two-factor authentication.
W. Garrett Myler, Sr. OT cybersecurity Specialist at Red Trident Inc. and proud U.S. Air Force Reservist, has over a decade of experience supporting threat intelligence and cyber operations within the U.S. Department of Defense - from strategic to tactical levels of operation. He has traveled the world performing vulnerability assessments on industrial control systems (ICS) supporting critical infrastructure. Mr. Myler is an experienced and engaging cybersecurity instructor and presenter and has trained professionals and addressed audiences from around the world. He is a CISSP, GIAC Certified Forensic Analyst, an ISA 62443 certified "expert", and has a Masters of Science in Digital Forensics and Cyber Investigation. Mr. Myler is honored to fill the roles of husband to his wife Julie and father to their five children.