SecurityTubeBeta Watch ... Learn ... Contribute |
 |
 |
 |
 |
 |
  |
|
Current Threats and Countermeasures (Louisville Infosec)
This is the video of the talk "Current Threats and Countermeasures" given at Louisville Infosec by Mark Maxey.
Abstract: Current Threats and Countermeasures - Securing the information assets of an enterprise has never been so important or so complicated. The past several years have seen a significant increase in the number of security threats and vulnerabilities and significant advancements in attack methodologies with new tools, techniques, and attack vectors being released on a weekly basis. Join Accuvant for a lively, interactive discussion to review the latest in current vulnerabilities and tools for ensuring security. Through presentation and live demonstration, attendees will learn about the latest attacks, tools, and techniques employed by today's hackers, as well as countermeasures that can help protect against these attacks.
Topics of discussion:
- Password security
- Google hacking (data mining)
- Exploit and attack frameworks
- Wireless insecurities (WEP and WPA cracking)
- Application attacks from Information Gathering to SQL Injection
- Physical security (key bumping)
- VoIP hacking and games
- RFID cloning and threats
- Ideas and resources for combating vulnerabilities.
Speaker Bio: Mark Maxey, Principal Consultant – Application Specialist – Accuvant Labs. Mark is a seasoned security assessor and application designer with over eight years of experience in the field, is a principal consultant with the Accuvant Labs assessment team. As a principal level consulting resource, Mark’s focus is primarily on application security initiatives including penetration testing, code reviews, secure software design and tool development. Mark is involved in several open source projects including development of the Interchange e-commerce platform. Mark is an OWASP and WASC project contributor. Mark has also made numerous presentations at security conferences such as ISSA and OWASP with a focus on application security, social engineering and emerging security threats. Mark is a Certified Information Systems Security Professional (CISSP), VISA Qualified Data Security Professional (QDSP), and VISA Qualified Payment Application Security Professional (QPABP)
Abstract: Current Threats and Countermeasures - Securing the information assets of an enterprise has never been so important or so complicated. The past several years have seen a significant increase in the number of security threats and vulnerabilities and significant advancements in attack methodologies with new tools, techniques, and attack vectors being released on a weekly basis. Join Accuvant for a lively, interactive discussion to review the latest in current vulnerabilities and tools for ensuring security. Through presentation and live demonstration, attendees will learn about the latest attacks, tools, and techniques employed by today's hackers, as well as countermeasures that can help protect against these attacks.
Topics of discussion:
- Password security
- Google hacking (data mining)
- Exploit and attack frameworks
- Wireless insecurities (WEP and WPA cracking)
- Application attacks from Information Gathering to SQL Injection
- Physical security (key bumping)
- VoIP hacking and games
- RFID cloning and threats
- Ideas and resources for combating vulnerabilities.
Speaker Bio: Mark Maxey, Principal Consultant – Application Specialist – Accuvant Labs. Mark is a seasoned security assessor and application designer with over eight years of experience in the field, is a principal consultant with the Accuvant Labs assessment team. As a principal level consulting resource, Mark’s focus is primarily on application security initiatives including penetration testing, code reviews, secure software design and tool development. Mark is involved in several open source projects including development of the Interchange e-commerce platform. Mark is an OWASP and WASC project contributor. Mark has also made numerous presentations at security conferences such as ISSA and OWASP with a focus on application security, social engineering and emerging security threats. Mark is a Certified Information Systems Security Professional (CISSP), VISA Qualified Data Security Professional (QDSP), and VISA Qualified Payment Application Security Professional (QPABP)
Related Videos from: Louisville Infosec 2009
.jpg) | .jpg) | .jpg) | .jpg) | .jpg) | |
You are Viewing this Video Now! | |||||
2786 views | 2252 views | 3071 views | 2828 views | 2485 views |
Author
Vivek Ramachandran is a security evangelist and has been working in computer security related fields for the past 7 years. In 2007, Vivek spoke at world renowned conferences Defcon (WEP Cloaking Exposed) and Toorcon (The Caffe Latte Attack). The discovery of the Caffe Latte Attack was covered by CBS5 news, BBC online, Network World etc news agencies.In 2006, Vivek was announced as one of winners of the Microsoft Security Shootout contest held in India among 65,000 participants. He has also been a recipient of a Team Achievement at Cisco Systems for his work on 802.1x and Port Security modules on the Catalyst 6500 switches. Currently he spends all of his time maintaining Security- Freak.Net , SecurityTube.Net and is the co-founder of Axonize. Vivek, is a Bachelor in Electronics and Communications Engineering from the prestigious Indian Institute of Technology, Guwahati.You can contact him at vivek[at]securitytube.net
©2007 Freak Labs |