Agenda
- Introduction
- 25-minute Analyst Walkthrough:
Two Real SOC Detections of Credential Theft from the H2 2025 Threat Findings Report.- Trojanised PuTTY Infostealer
- ClickFix Social Engineering Script
- Lessons Learned: What to Apply in Your Environment
What you'll learn
- How modern credential theft attacks bypass users and tools.
- The signals that expose infostealers and fileless attacks.
- How our SOC detects identity attacks early.
- How IAM hardening and Dark Web Monitoring strengthen defence.
- Practical hardening actions that reduce identity risk.
Presenter
Callum Sweetman
SOC Analyst
Callum is a Cyber Security Analyst specialising in the investigation and analysis of real‑world cyber threats. Working within our Security Operations Centre, Callum focuses on identifying malicious behaviour, analysing attacker techniques, and translating complex security findings into actionable insight for security teams. His work contributes directly to our threat research and customer protection, with a particular focus on early‑stage detection and behavioural‑based threat analysis.