Tuesday, March 02 01:00 PM
Blue Room 103
Session Code: EXP-106
Session Title: The Seven Most Dangerous New Attack Techniques and What Is Coming Next
Session Abstract: Nation states and organized crime groups are rapidly increasing the sophistication, virulence, and effectiveness of attack tools and techniques. In this session, three people in unique positions to see the newest attack patterns will share what they believe are the seven most dangerous new attack vectors and how they think attack tools and patterns will evolve over the coming year.
Panelist: Ed Skoudis, Senior Security Consultant, InGuardians, Inc.
Panelist: Rohit Dhamankar, Director of DVLabs, TippingPoint Technologies
Panelist: Johannes Ullrich, Chief Research Officer, The SANS Institute
Moderator: Alan Paller, Director of Research, The SANS Institute
Tuesday, March 02 03:30 PM
Briefing Center
Session Code: BC-05
Session Title: IP Reputation: The Good, Bad and the Ugly
Session Abstract: It is becoming easier for hackers to embed malicious code into popular Web sites to capture user information such as log in credentials and other identifiers. This has spurred a new market for Internet Protocol (IP)/domain reputation information that helps organizations ensure integrity of their Web sites. The talk will focus on how reputation services work including the benefits and limitations.
Speaker: Roark Pollock, Director of Product Marketing, TippingPoint Technologies
Thursday, March 04 10:40 AM
Orange Room 305
Session Code: PHYS-303
Session Title: Cracking Down on SCADA Security
Session Abstract: Your control systems are as secure or strong as the weakest link of your network. The research discussed in this session will expose some of the basic architectural flaws in these networks, how they can be infiltrated and illustrate various application vulnerabilities, and how they can be abused if in wrong hands.
Speaker: Jason Avery, Manager of Digital Vaccine, TippingPoint Technologies
Thursday, March 04 01:00 PM
Orange Room 306
Session Code: NMS-304
Session Title: Customizing Your Network Security Based Upon Your Vulnerability Climate
Session Abstract: Hackers use every possible vector to exploit weak points in the network. Organizations need to react quickly to address these vulnerabilities to avoid being attacked. This panel session will discuss integrating IPS with vulnerability management to make it easier and faster for companies to deploy the security solutions required to protect their networks. This panel includes a manager from Diamler to discuss how the integration of these technologies helps save money and resources.
Panelist: Peter Kunz Manager, Infrastructure Security, Information Technology Management, Global Information Security, Daimler
Panelist: Paul Arceneaux, VP of Product Line Management, TippingPoint Technologies
Panelist: Wolfgang Kandek, CTO, Qualys, Inc.
Moderator: Robert Ayoub Research Manager, Network Security, Frost & Sullivan
Friday, March 05 10:10 AM
Orange Room 308
Session Code: RR-402
Session Title: MOBOTS: A Pocketful of Pwnage
Session Abstract: Today's mobile phone market is rich and diverse, with devices that are capable of complex, production-oriented tasks that challenge even the most sophisticated desktop computers. Likewise, these "smart phones" are vulnerable to exploitation via many of the same vectors. This session will demonstrate that it is possible to implement and maintain a traditional distributed botnet on your mobile phone by relying on social engineering and vulnerabilities in the iPhone/Android security models.
Speaker: Derek Brown, Security Researcher, TippingPoint Technologies
Speaker: Daniel Tijerina, Security Researcher, TippingPoint Technologies
Be sure to stop by the booth. There will be several incentives to see what we have to offer. I will probably be roaming the area to field questions as I can.
I'll just drop a hint that the MOBOTS presentation will be very awesome. Ever see a functional mobile phone bot net? Want to? :)
