Recognise the Threat

Name the attack by how it behaves — malware, spyware, social engineering, and the business-email-compromise that quietly drains an account.

Day 1 · 2026 08:30 – 15:30 Institute of Banking Studies, Kuwait

Workshop brief

A hands-on day built around recognition and judgement, not jargon. You'll watch how money actually leaves a bank — how malware spreads, how spyware listens, how a confident voice and a tight deadline do more damage than any exploit — and learn to name each one by its behaviour. Every concept lands as a localised, hands-on exercise drawn from real Kuwaiti-bank lures.

Run of show

A guide, not a script — timings flex to the room.

1
Session 1 — Open, spot-check & the three lines of defence08:30
A real-or-fake spot-check on local bank messages, the map for the day, and who owns risk across the three lines of defence.
Break10:00
2
Session 2 — What losses really cost · Malware up close10:15
The hidden cost of dwell time, then virus, worm and trojan — each one demonstrated live and named by how it spreads.
Lunch & prayer11:45
3
Session 3 — Spyware up close · Social engineering12:15
A live keylogger capture and a SIEM hunt, then the human levers — authority, urgency and familiarity — that open the door.
Break13:45
4
Session 4 — Business email compromise & wrap-up14:00
Spot-the-BEC on a localised invoice lure, the controls that stop it, and a close that bridges into Day 2.

What you'll leave able to do

Name a threat by how it behaves — not by its reputation.
Spot the red flags in a real lure before anyone clicks.
Know which line of defence owns an incident.
Put a number on what a breach actually costs.

What we'll cover

Three lines of defence Malware Spyware Social engineering Business email compromise

Day 1 slides

The full interactive deck — analogies, live demos, and the scored exercises, exactly as run in the room.

Open the slides →

Resources & links

Day 1 slide deckSlides Day 2 slide deckSlides Day 2 · Judge the defenceDay plan All workshopsOverview