News and Coverage

Cybercrime: Today and Tomorrow’s Threats

Mobile and The Web
Location: Empire Room Level: Novice
Average rating: *****
(5.00, 2 ratings)

It has long been an unfortunate fact that the World Wide Web cannot be safely used by the vast majority of people in the world. From advanced Flash and JavaScript attacks to vulnerabilities in the fundamental technologies powering the Internet, the last several years have brought a new slew of techniques that are undermining the already shaky trust relationships that make web commerce possible. It is incumbent upon us in the Web and security communities to finally come together and make some of the hard decisions that are necessary to preserve the Web as a place safe for conducting business, communicating with friends, and creating lolcats.

In this talk, we will discuss the different groups, techniques, and motivations behind crime on the Internet, with a focus on attacks targeting web users. The session will review both headline making and lesser known security incidents, and explore with the audience what trends can be gleaned from these attacks.

We will also review the most interesting security research from the last year, such as the attacks against DNS and SSL, and focus on how these bugs affect both traditional and pioneering web companies.

The talk will conclude with a look towards the security concerns of the future, and how trends such as RIA, cloud computing, and social networking are making it likely that 2009 will again be a banner year for online criminals.

Photo of Alex Stamos

Alex Stamos

iSEC Partners, Inc.

Alex Stamos is a Founding Partner of iSEC Partners, Inc, a strategic digital security organization. Alex is an experienced security engineer and consultant specializing in application security and securing large infrastructures, and has taught multiple classes in network and application security. He is a leading researcher in the field of web application and web services security and has been a featured speaker at top industry conferences such as Black Hat, CanSecWest, DefCon, SyScan, Microsoft BlueHat and OWASP App Sec. He is a contributing author of “Hacking Exposed: Web 2.0” and holds a BSEE from the University of California, Berkeley.

  • Sun Microsystems
  • Yahoo! Inc.
  • IEEE
  • Make magazine
  • Orange Labs