The network is segmented. There’s aggressive IDS/IPS all over the place. You’ve fired everyone who failed your phishing tests, even the CFO. What’s left? You’re still at risk from the infrastructure you can’t control: domain name registrars, SSL/TLS certificate authorities, and even Tier 1 Internet backbones. Seasoned ISP sysadmin James Renken will talk about detecting and defending against social engineering, forgery, and BGP hijacking attacks that we’ve seen from script kiddies, cybercrime gangs, and nation states.