https://wiki.itcollege.ee/api.php?action=feedcontributions&feedformat=atom&user=AllpalICO wiki - User contributions [en]2026-05-05T15:35:23ZUser contributionsMediaWiki 1.45.1https://wiki.itcollege.ee/index.php?title=ICS0018_Hands-on_seminars&diff=143163ICS0018 Hands-on seminars2023-03-08T07:19:27Z<p>Allpal: /* The Seminars */</p>
<hr />
<div>=== The idea ===<br />
<br />
The hands-on seminars are based on ScamLab materials. The goal is to learn about different scams in a safe(ish) but real environment. A little side quest is to waste scammers' time so that they can't use it on actual victims. <br />
A successful presentation will result in passing the course if the attendance criteria (6 out of 8 lectures and seminars) is met. To register a presentation, please send an e-mail to Kristjan, stating the chosen time slot. '''There are limited presentation slots - first come, first served!'''<br />
<br />
<br />
=== The Task ===<br />
<br />
Step 1: Create a fake identity and honeypot email account for engaging with scammers. Other platforms are also welcome, as long as you are able to protect your identity.<br />
<br />
Step 2: Distribute the email address on shady or spammy sites, such as social media, online forums, etc. Some tips can be found here https://www.quora.com/How-can-I-get-scam-emails<br />
<br />
Step 3: Wait for the scams to start rolling in.<br />
<br />
Step 4: Engage! First select if you're going to use a naïve or aggressive approach. <br />
<br />
If you don't manage to get any scammers to directly email your newly created address, go look in your regular mailbox, in the spam folder, ask friends & family, etc. NB! Before replying to any of those "crowdsourced" scam emails from your fake account, be sure to delete the address it was originally sent to.<br />
<br />
Some tips for safety:<br />
# Never reveal your (or anyone else's) real personal information to the scammers. Make up something realistic.<br />
# Never open any links in emails unless you're in a protected sandbox environment.<br />
# NEVER give out any real financial information, account information, or passwords.<br />
# Always use Multi-Factor Authentication (MFA). Even on your fake accounts.<br />
<br />
Here's the grand prize: if you manage to engage with at least 3 scammers for an email chain of 5 messages or more (they respond to at least 2 of your letters in the same thread), and present your findings at one of the seminars, '''you pass the course'''. It's not as easy as it might first seem.<br />
<br />
An alternative way to pass is to educate people in your social network, friends, family, coworkers, etc about scams, how to spot them, how to avoid them, what to do if you're already a victim.<br />
<br />
=== The Seminars ===<br />
<br />
# March 1: <br />
#* Homework discussion: fake identities, findings in honeypots<br />
#* Petr Jelinek &#x2705;<br />
#* Phasha Davrishev &#x2705;<br />
#* Anton Višnevski, Denis Shadrin &#x2705;<br />
#* Vladyslava Shekula &#x2705;<br />
#* Ilya Nikolaev &#x2705;<br />
# March 8: <br />
#* Scambaiting: aggressive approach<br />
#* Helena Veebel<br />
#* Aleksandr Voronkov<br />
#* Maria Logberg<br />
#* Farid Azizov<br />
#* Rauf Gozal<br />
#* ...<br />
# March 15: <br />
#* Scambaiting: naïve approach<br />
#* Karmo Kütt<br />
#* Alejandro Ballesteros Perez<br />
#* Sanan Mammadli<br />
#* Filip Tomeš<br />
#* Maksim Gorozhanko<br />
#* Lorenzo Cavallini<br />
#* Allen-Kristjan Päll<br />
#* ...<br />
# March 22: <br />
#* Scam prevention, how to educate others<br />
#* Nicoleta Petrea<br />
#* Hannes Kraavi* (scambaiting, naïve approach)<br />
#* Talha Gesen<br />
#* Georgi Tarassov<br />
#* Daniil Lemberg<br />
#* Risto Remmel<br />
<br />
<br />
[[Social Engineering | Back to the course page]]</div>Allpalhttps://wiki.itcollege.ee/index.php?title=E-SPEAIT_Participants&diff=141281E-SPEAIT Participants2022-01-30T17:21:50Z<p>Allpal: </p>
<hr />
<div>Everybody should add his/her name and blog address here.<br />
<br />
If you log in with your Uni-ID, you should have the 'edit' tab at the top of this page. Alternatively, you are allowed to e-mail the address directly to the lecturer (but this would keep others from reading - and possibly contributing to, by commenting - your blog), therefore publishing is preferred.<br />
<br />
Attention: if you see that the list is already long, please add yourself to the '''bottom''' of it. Otherwise, later people will be really hard to spot.<br />
<br />
Lecturerː<br />
* Kaido Kikkas, https://jora.kakupesa.net/ (sorry, in Estonian only)<br />
<br />
Students:<br />
* Tashi Kamlaldin Rwalshrangpa https://www.blogger.com/profile/14026800162708146439<br />
* Maria Logberg, https://mlogberg.wordpress.com/<br />
* Semen Diev https://cybersecurityinfospeedrun.blogspot.com/<br />
* Andres Naruson https://tln-cyberstalker.blogspot.com/<br />
* Aleksandr Voronkov, https://cyberkotyara.blogspot.com/<br />
* Johannes Kodumäe https://thisismyblogaboutcybersecurity.wordpress.com/<br />
* Grzegorz Kmita, https://otisthescribe.wordpress.com/<br />
* Anton Ostashkov, https://anosta1147.wordpress.com/<br />
* Vladislav Suprun, https://vlsupr.blogspot.com/<br />
* Can Çağlar, https://injapanheartsurgeonnumber1steadyhand.wordpress.com/<br />
* Izolde Springe, https://cyberice3.wordpress.com/<br />
* Ezel Erguden https://blog60239333.wordpress.com<br />
* Sanan Mammadli https://taltech-sananm.blogspot.com/<br />
* Alejandro Ballesteros Perez, https://ballesterosalx.wordpress.com/ <br />
* Farid Azizov https://cyber-faaziz.blogspot.com<br />
* Artyom Davydik https://cyberkotleta.wordpress.com/<br />
* Lorenzo Cavallini, https://locava.wordpress.com/<br />
* Louis Alvin, https://speait.louis-alvin.eu/<br />
* Helena Veebel, https://helenablog1.blogspot.com<br />
* Nicoleta Petrea https://addicttech-nicoleta.blogspot.com/<br />
* Aleksei Bahmatov, https://cybermonki.wordpress.com/<br />
* Oskar Pikkov, https://r00m641a.blogspot.com/<br />
* Rasmus Reigo, https://rareig.wordpress.com/<br />
* Ilya Nikolaev, https://itisagoodidea.blogspot.com/<br />
* Benedek Matveev, https://bematv.wordpress.com/<br />
* Farkas Pongrácz, https://fapong.wordpress.com/<br />
* Risto Remmel, https://riremm.blogspot.com/<br />
* Pavel Rotov, https://pavelrotov-speait.blogspot.com/<br />
* Nadine Jungermann, https://e-speait-nadine.blogspot.com/<br />
* Sofia Bermudez : https://speaitsofia.wordpress.com<br />
* Edvin Toome https://edvintoome.blogspot.com/<br />
* Bendegúz Koszticsák https://bekosz.blogspot.com/<br />
* Margus Valdre https://itobsevatoorium.blogspot.com/<br />
* Akimbek Kurlys https://kazakhsecurity.wordpress.com/akimbek-kurlyss-blog/<br />
* Artur Lykov https://roomno40.blogspot.com/<br />
* Roman Krutsko https://siidirom.blogspot.com/<br />
* Dmitri Trubetskoi https://zxclord.blogspot.com/<br />
* Luca Maddaleno https://www.lucamaddaleno.me/ ([https://www.lucamaddaleno.me/feed rss feed])<br />
* Aleksandrs Rimlins https://alexrimlin.livejournal.com/<br />
* Hannes Kraavi https://hannesk2022.blogspot.com/<br />
* Vladyslava Shekula https://vladyslavashblog.blogspot.com/<br />
* Denis Shadrin https://denissh2022.livejournal.com/<br />
* Phasha Davrishev https://phdavr.wordpress.com/<br />
* Georgi Tarassov https://kot25blog.blogspot.com/<br />
* Mark Samoilov https://msamoittu.blogspot.com/<br />
* Aldous Waters https://aldouswaters.livejournal.com/<br />
* Jáchym Líva https://livajach.wordpress.com/<br />
* Adetunji Adeyimika https://wordpress.com/view/adetunjiadeyimika.wordpress.com<br />
* Rauf Gozal https://raufgozal.blogspot.com<br />
* Orkhan Hasanzade https://orkhanhasanzade.blogspot.com/<br />
* Allen-Kristjan Päll https://tamrextulekustuti.blogspot.com/<br />
<br />
<br />
* The OPML file with the RSS feeds for the forum and all the blogs will be available when the course gets underway and all participants are onboard.<br />
<br />
[[E-SPEAIT | Back to the course page]]<br />
<br />
[[Category:ITSPEA]]</div>Allpal