In this talk, we will discuss the different groups, techniques, and motivations behind crime on the Internet, with a focus on attacks targeting web users. The session will review both headline making and lesser known security incidents, and explore with the audience what trends can be gleaned from these attacks.
We will also review the most interesting security research from the last year, such as the attacks against DNS and SSL, and focus on how these bugs affect both traditional and pioneering web companies.
The talk will conclude with a look towards the security concerns of the future, and how trends such as RIA, cloud computing, and social networking are making it likely that 2009 will again be a banner year for online criminals.
Alex Stamos is a Founding Partner of iSEC Partners, Inc, a strategic digital security organization. Alex is an experienced security engineer and consultant specializing in application security and securing large infrastructures, and has taught multiple classes in network and application security. He is a leading researcher in the field of web application and web services security and has been a featured speaker at top industry conferences such as Black Hat, CanSecWest, DefCon, SyScan, Microsoft BlueHat and OWASP App Sec. He is a contributing author of “Hacking Exposed: Web 2.0” and holds a BSEE from the University of California, Berkeley.