BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//bsides-canberra-2025//talk//DRR8KX
BEGIN:VTIMEZONE
TZID:AEST
BEGIN:STANDARD
DTSTART:20000326T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3;UNTIL=20050326T170000Z
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:STANDARD
DTSTART:20060402T040000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060401T170000Z
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:STANDARD
DTSTART:20070325T040000
RRULE:FREQ=YEARLY;BYDAY=4SU;BYMONTH=3;UNTIL=20070324T170000Z
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:STANDARD
DTSTART:20080406T040000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000827T030000
RRULE:FREQ=YEARLY;BYDAY=4SU;BYMONTH=8;UNTIL=20000826T170000Z
TZNAME:AEDT
TZOFFSETFROM:+1000
TZOFFSETTO:+1100
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20011028T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20071027T170000Z
TZNAME:AEDT
TZOFFSETFROM:+1000
TZOFFSETTO:+1100
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20081005T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=10
TZNAME:AEDT
TZOFFSETFROM:+1000
TZOFFSETTO:+1100
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-bsides-canberra-2025-DRR8KX@pretalx.com
DTSTART;TZID=AEST:20250925T133000
DTEND;TZID=AEST:20250925T135500
DESCRIPTION:In June 2025\, CyberCX released a report on a highly orchestrat
 ed phishing campaign targeting popular WordPress hosting platform WP Engin
 e\, dubbed “DarkEngine”\, which led to the compromise of at least 2\,3
 50 unique WordPress websites worldwide to deliver information stealer and 
 remote access trojan malware through fake CAPTCHA prompts.\n\nClickFix (an
 d fake CAPTCHA) have become increasingly common as initial access vectors 
 for individuals and organizations with their detonation often leading to t
 he compromise of sensitive credentials and information used to provide a f
 oothold into organizations’ environments. But how do they get there in t
 he first place?\n\nIn this presentation\, the lead author of this report s
 hares their research and analysis journey of this campaign’s operations 
 and infrastructure as well as providing detection and defence measures tha
 t organizations can put in place to reduce the risk of users falling victi
 m to these increasingly common tactics.\n\nJoin your conductor\, Liam Wilk
 inson\, on this journey of exposed threat actor infrastructure\, scripting
 \, and open-source intelligence to trace the tracks of the operations behi
 nd “DarkEngine”.
DTSTAMP:20260604T010126Z
LOCATION:Off-Main Track
SUMMARY:DarkEngine: Conducting Research into a Highly Orchestrated Phishing
  Campaign - Liam Wilkinson ("nullifysecurity")
URL:https://pretalx.com/bsides-canberra-2025/talk/DRR8KX/
END:VEVENT
END:VCALENDAR