Presentation Title: Hacks Happen
Conservative estimates put the total annual IT security spending in the US at $50 billion and e-crime losses at $100 billion. Weâ€™re losing two dollars for every dollar spent. Those numbers are said to be worse on a global scale. Newly passed laws, industry regulation, and press coverage have certainly raised the profile of the problem, but where have these actions really gotten us?
Websites are riddled with easy to exploit vulnerabilities, millions of desktops are infected with botnet connected malware, and cyber-attacks are more targeted, numerous, and financially motivated than ever! All the statistics we have seem to be moving in the wrong direction. And the more effort we invest the harder it is to tell if the situation is getting better or worse.
These days we have a lot more experts and less expertise. More products and less coverage. More best practices and less security. More news and less information. This environment type of environment is exactly why hacks happen every minute of every hour of every day. Its time to take a second look at what we know, reconsider what we think we know, and possibly come to a whole new set of assumptions.
Jeremiah Grossman, founder and chief technology officer of WhiteHat Security, is a world-renowned expert in web application security and a founding member of the Web Application Security Consortium (WASC). At WhiteHat, Mr. Grossman is responsible for web application security R&D and industry evangelism. He is a frequent speaker at industry events including the BlackHat Briefings, ISACA’s Networks Security Conference, NASA, ISSA and Defcon. A trusted media resource, Mr. Grossman has been featured in USA Today, the Washington Post, Information Week, NBC Nightly News, and many others. Mr. Grossman is also a featured expert and frequent contributor on TechTarget’s SearchAppSecurity.com. Prior to WhiteHat, Mr. Grossman was an information security officer at Yahoo!