Experts at Inaugural IT Security Conference Demonstrate New Attacking Techniques and Penetration Testing
LONDON (May 27, 2010) - Trustwave, a leading provider of information security and compliance solutions, will have a member of its SpiderLabs team speak at AthCon, June 3 and 4, 2010, in Athens, Greece. SpiderLabs is the advanced security team at Trustwave responsible for incident response and forensics, penetration testing, application security and security research.
AthCon is an IT security conference that brings together ethical hackers and expert penetration testers to teach attendees new attack vectors and methods of exploitation, as well as various forms of penetration testing. In its inaugural year, the conference will provide a venue for understanding the evolving threat landscape.
Presenting at AthCon is Trustwave security consultant Christian Papathanasiou, who will deliver Abusing JBoss, which will unveil a new tool to compromise JBoss servers, most often used to host Java web sites. This server is often viewed as inherently secure due to the difficulty of obtaining off-the-shelf equipment for compromising the server. With JBoss's prevalent use in industries including financial institutions and gaming, attackers stand much to gain by compromising these servers.
Papathanasiou will demonstrate the tool by which thousands of JBoss servers could potentially be compromised in just a few minutes. Afterward, he'll show mitigating actions that can stop the attacks. He will also provide information on how to secure JBoss servers to ensure they're not prone to such attacks.
"We're excited about the opportunity to take part in an inaugural conference that will help the information security community work together to defend against evolving threats," says Andy Bokor, executive director of EMEA, APAC for Trustwave. "Bringing together the latest research helps ensure that businesses and organizations have the latest information to help protect their data and thwart potential attacks."
"Technologies that do not have off-the-shelf tools to measure their risk for compromise are often confused for secure," says Nicholas J. Percoco, senior vice president and head of SpiderLabs. "This presentation will help developers understand the security implications of JBoss to better secure their web applications and in turn, protect customer data."
About Trustwave
Trustwave is a leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions including SIEM , WAF , EV SSL certificates and secure digital certificates . Trustwave has helped hundreds of thousands of organizations-ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers-manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit https://www.trustwave.com/en-us/.