ADVISORY/Imperva CTO Amichai Shulman to Present RSA Conference Session on Phishing Technique that Poisons Real Web Sites.Live Demo will Expose To make available. When software "exposes" certain functions, it makes those routines available to the programmer through a programming interface (API). If a company "exposes" its Web services, it is making certain services available to users or to other companies over the Web. and Explain How to Defend Against New Attack Method that Hijacks Legitimate Websites
WHO: Amichai Shulman, CTO, Imperva(TM), Inc.
WHAT: Traditional Phishing attacks transparently redirect victims to
fraudulent web pages on the attacker's website, but a new type
of attack redirects victims to a real web page on a legitimate
website to carry out identity theft and financial fraud. These
attacks exploit web site vulnerabilities known as Cross Site
Scripting (XSS) and Script Injection. This presentation,
entitled Real Site Phishing and Advanced Cross Site Scripting,
will use an e-commerce application to demonstrate how these
techniques work and explain how organizations can defend
against them. Attendees will learn:
- How Phishing techniques exploit vulnerabilities of the
target site
- How Cross Site Scripting attacks work and are carried out
- What protection mechanisms can be used to defend against
Phishing attacks that exploit Cross Site Scripting and
Script Injection vulnerabilities
WHERE: RSA Conference 2006, McEnery Convention Center, San Jose,
California
WHEN: Tuesday, February 14, 2006, 4:30pm -- 5:20pm
HOW: 50 minute technical session
E[acute accent acute accent n. A mark (´) indicating: a. that a vowel is close or tense, as é in French été. b. that a vowel or syllable has a high or rising pitch, as in Chinese or Ancient Greek. c. ]About Imperva E[acute accent]Imperva is the leader in data security for the data center. The SecureSphere product line provides data security, data assurance, and regulatory reg·u·late tr.v. reg·u·lat·ed, reg·u·lat·ing, reg·u·lates 1. To control or direct according to rule, principle, or law. 2. compliance for sensitive and proprietary data in corporate data centers. SecureSphere protects databases and web applications against insider threats, as well as external attack and worm worm, common name for various unrelated invertebrate animals with soft, often long and slender bodies. Members of the phylum Platyhelminthes, or the flatworms, are the most primitive; they are generally small and flat-bodied and include the free-living planarians (of infection. It requires no manual tuning or changes to existing infrastructure. Imperva SecureSphere gateway appliances are deployed in leading financial, healthcare, and retail organizations around the globe. Led by Shlomo Shlomo, meaning peace, is a common Hebrew male given name. The following individuals are often referred to only by the name Shlomo:
American writer and activist whose works include the novel Faggots (1978) and the play The Normal Heart (1985). In 1988 he founded the radical AIDS awareness group ACT UP (AIDS Coalition to Unleash Power). , a Check Point Software Technologies founder, Imperva is privately funded by Accel Partners, US Venture Partners, and Venrock Venrock is a pioneering venture capital firm formed in 1969 to build upon the successful investing activities of the Rockefeller family that began in the late 1930’s. It has offices in Menlo Park, California, New York City, Cambridge, Massachusetts, and Israel. Associates. For more information, visit www.imperva.com. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion