[ mainpage :: register :: training :: conference :: hitb-labs :: the venue ]
[ capture the flag (CTF) :: wireless village :: lock picking village (LPV) :: open-hack ]
[ call for papers (CFP) :: conference agenda :: sponsors :: press/media :: forum ]
[ conference kit (PDF) :: past conferences :: contact us ]


HITBSecConf2008 - Malaysia (Day 1)

HITBSecConf2008 - Malaysia (Day 2)

Registration for HITBSecConf2009 - Dubai is also now open.

KEYNOTE SPEAKER 1: Jeremiah Grossman (Founder and CTO, White Hat Security)

Filed under: Main Page — Administrator @ 2:41 pm

Presentation Title: The Art of Click Jacking
Presentation Abstract:

Clickjacking affects just about everyone using a Web browser and it’s time the full details are released.

Think of any button (image, link, form, etc) on any website (internal or external) that you can get to appear between the Web browser walls. Wire transfer on banks, DSL router buttons, Digg buttons, CPC advertising banners, Netflix queue, etc. Next consider that an attacker can invisibly hover these buttons below the user’s mouse, so that when a user clicks on something they visually see, they’re actually clicking on something the attacker wants them to. Now, what could the bad guy do with that ability? The potential is limitless. The more Robert Hansen (CEO, SecTheory) and Jeremiah Grossman (CTO, WhiteHat Security) researched, the worse the exploits became. Several different flaws exposed themselves, making a once underestimated attack technique extremely scary.

Mr Grossman will outline the fundamentals of clickjacking and give live demonstrations of the capabilities of this once underestimated attack.

About Jeremiah:

Jeremiah Grossman, founder and chief technology officer of WhiteHat Security, is a world-renowned expert in web application security and a founding member of the Web Application Security Consortium (WASC). At WhiteHat, Mr. Grossman is responsible for web application security R&D and industry evangelism. He is a frequent speaker at industry events including the BlackHat Briefings, ISACA’s Networks Security Conference, NASA, ISSA and Defcon. A trusted media resource, Mr. Grossman has been featured in USA Today, the Washington Post, Information Week, NBC Nightly News, and many others. Mr. Grossman is also a featured expert and frequent contributor on TechTarget’s SearchAppSecurity.com. Prior to WhiteHat, Mr. Grossman was an information security officer at Yahoo!

Event Organizer

Hack In The Box (M) Sdn. Bhd.

Supported & Endorsed By

Malaysian National Computer Confederation

Multimedia Development Corporation

Platinum Sponsors

Titanium Sponsor (Post Conference Reception)

Gold Sponsors

CTF Sponsor

CTF Prize Sponsor

Open-Hack Sponsor

Metro-e and Official Bandwidth Sponsor

Network Equipment Sponsor

Our Speakers are Supported By

Supporting Media:

Virus Bulletin

InfoSec News

InfoSec News

XAKEP (Russia)

Supporting Organizations

Professional Information Security Association - Hong Kong

Special Interest Group in Security & Information InteGrity Singapore