News Releases

Trustwave SpiderLabs to Present at SecTor 2011

Written by | Oct 14, 2011 3:56:00 AM

CHICAGO (October 13, 2011) - Trustwave, a leading provider of information security and compliance solutions, today announced that Trustwave cyber security experts will speak at SecTor 2011, in Toronto, October 18 through 19. The presentations will be delivered by members of Trustwave SpiderLabs, the team of ethical hackers responsible for application security, incident response and forensics, penetration testing and security research.

Rob Havelt, director of penetration testing, will present Earth vs. The Giant Spider: Amazingly True Stories of Real Penetration Tests, which will review a massive collection of the weirdest, freakiest, rarest, and most bizarre hacks ever seen in the wild. Trustwave's SpiderLabs has performed thousands of penetration tests and has a large collection of first-hand accounts of these unlikely hacks. The presentation will also discuss how systems employed by companies can also be leveraged by an attacker to harm the very network they are protecting.

Grayson Lenik, security consultant, will present I'm your MAC(b) Daddy, which will cover the use of file system timelines to crack data breach cases and illustrate how to defeat common anti-forensics techniques. He will also review the tools and techniques available to perform these tasks and demonstrate how quickly this data can be obtained and parsed.

Ryan Linn, senior security consultant, will present Progression of a Hack. Breaches continue to make headlines despite organizations seemingly locking down key data. Linn will demonstrate how a motivated attacker can compromise a patched Windows box, escalate privileges on a domain and acquire sensitive data. He will also provide mitigation strategies and steps to take to avoid being a headline.

Rodrigo Montoro, security researcher, will present HTTP Header Hunter - Looking for Malicious Behavior into your HTTP Header Traffic, where he will show a proof-of-concept to demonstrate that HTTP headers can be scored to find malicious activity. This concept is based on analysis of common HTTP/HTTPS headers and behaviors. Looking for malicious connections based on SpiderLabs research and packet captures from various sources, Montoro will show how each header in an HTTP request is scored based on the frequency that it appears, blacklisting and other methodology.

Nicholas J. Percoco, senior vice president and head of Trustwave SpiderLabs, and Jibran Ilyas, senior security consultant, will deliver Malware Freakshow 3. In this installment, Percoco and Ilyas will highlight four new pieces of malware where the victims are you and people you know. These pieces of malware can be found at work, at the grocery store, mobile phone, and even a local watering hole.

Chris Pogue, senior security consultant, will present Sniper Forensics v3.0: Hunt, which will bring all of the elements of the previous two Sniper Forensics presentations to bear. He'll equip the investigator with the methodology and tools to identify the most common types of criminal malware. Pogue will demonstrate how to identify an infected host by what it's doing, not by traditional methods such as malware detection, in three real world scenarios.

In addition, Jibran Ilyas, Grayson Lenik and Chris Pogue will lead a forensic training session for the Royal Canadian Mounted Police (RCMP) and the Provincial Police Cyber Crimes Divisions. The training will identify the most common types of criminal malware, provide demos of highly advanced malware and discuss new timeline techniques for incident response and live analysis.

"This type of information sharing is critical at a time when breaches continue to make headlines," said Nicholas J. Percoco, senior vice president and head of Trustwave SpiderLabs. "Utilizing our experience and security expertise, we will teach our peers about new vulnerabilities and attack methods to help them protect their network infrastructures."

About Trustwave

Trustwave is a leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions including SIEM , WAF , EV SSL certificates  and secure digital certificates . Trustwave has helped hundreds of thousands of organizations-ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers-manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit https://www.trustwave.com/en-us/.