2025-10-19 –, Wesfarmers Theatre
Dive into the cross-section between common email security controls and how Microsoft's Direct Send feature can bypass a bunch of them - even in some 'fixed' environments.
We take a fun, shallow tour on the history of email security, introduce Microsoft's Direct Send 'feature' and talk about why attackers love it so much.
This includes some wonderful new research on how it can still be exploited in some fixed environments, one or two memes, lots of wildly incorrect assumptions by the speaker and guidance on what IT teams can do to help protect their org.
Will has been doing security consulting things in Perth for just over 10 years.
He's done a little bit of everything, but mainly penetration testing and similar technical assessments.
If you were a Victorian-based insurance company during his brief phase configuring firewalls... he is really really sorry. But he wanted me to tell you that he "figured out the stupid thing he'd done pretty quickly" and that "Production wasn't down for THAT long..."