Mass Attack Campaign with Hands-on Webcam Exercise will teach participants about the IOT threat landscape (what have we seen) and common oversights made in the development, configuration, and deployment of IoT devices. And, while IOT may not be interesting itself as an end target, it’s easy to build an automated campaign at scale which can access operational systems and sensitive data. I’ll do a hacking demonstration to show the stages of an IOT campaign from OSINT/recon to exploitation to lateral movement to steal interesting things.