The Value of Vulnerability Disclosure

Network security is not just about eliminating bad traffic, it is also about making sure applications and critical data are always available to the right audience at the right time. The right network security architecture can provide security for physical assets, but also extend protection for virtual and cloud computing infrastructures without impacting performance. In fact, unlike in the past, a network security product should never be considered a bottleneck due to deep packet inspection, but should actually be capable of improving bandwidth and performance.

About the Presenter:
Sanjay Raja, Director of Product Marketing for HP TippingPoint, is responsible for marketing of HP TippingPoint’s Network and Cloud Security solutions. He has over 12 years of experience in various Product Marketing, Product Management, and Alliances roles primarily in IT Security. He has been in the IT industry for the last 18 years with experience in Security, Networking, Servers and Storage and Network and Application Performance Testing. In addition he has authored several papers and presented at various industry events on security, compliance and testing. Prior to HP he has worked at Cabletron Systems, 3Com, Nexsi Systems, Spirent Communications, Top Layer Networks, Symantec and most recently Crossbeam Systems. Sanjay currently holds a B.S.EE and MBA from Worcester Polytechnic Institute.

Social networking for most of us is becoming wrapped into our DNA. This is especially important for the next generation workforce. Additionally, the employees today and those of tomorrow will expect the capability to blog and social network with corporate assets and corporate bandwidth. Additionally, these technologies are being widely used for corporate marketing and communication. That is why it's important to look at all aspects of securing your infrastructure and more importantly, the people that drive your organization today. This involves educating people, corporate process and the right security technologies. The following session will cover the benefits and the security risks inherit with social networking across all business verticals. Additionally, the author will provide a use case analysis of information that is gathered via web beacons that harvest information unknowing to the user.

Vulnerabilities that exist in today’s commercial and custom software are the primary target for attackers. The most severe of these vulnerabilities are those that can result in remote code execution – that is an attacker can take complete control of another system for the purposes of stealing information, defacing property or just causing trouble. In this session, Brian Gorenc, will demonstrate how to analyze a vulnerability and the steps required to weaponize it. Centering on a vulnerability in a Microsoft application, the demo will show you how an attacker can quickly move from proof-of-concept to remote code execution. The discussion will also include thoughts on mitigation strategies for reducing risk.

Enterprise organizations have been under security attacks for the past decade, but security events in 2011 have created a ripple effect that will be felt for years to come and will actually start to shift the way we view security. This webcast will highlight the latest threat trends and risks from the new 2011 Cyber Risk Report from HP Enterprise Security and will cover:

• Why a decline in vulnerabilities disclosed may lead to a false sense of security
• How changing attack motivations are increasing security risks
• What the biggest risks to the enterprise were in 2011

In today's security environment, threats can evolve more quickly than the ability to protect against them creating a security gap for most organizations. In this webcast, Forrester Analyst John Kindervag and HP DVLabs Director Dan Holden will discuss the importance of leveraging security research and threat intelligence to help close this gap. Through ongoing relationships with dedicated security and vulnerability research organizations, security professionals can gain proactive intelligence into potential future threats and how to better protect critical networks, applications and information against them.

Security attackers are constantly upgrading their techniques to make network attacks more difficult to detect with traditional measures. The security checks required to detect all of these attacks can overload your security products, but ignoring them can significantly decrease your network bandwidth. Reputation services enhance the security of traditional network security products by blocking access to areas of the Internet that compromised and delivering attacks on unsuspecting users. This provides a number of benefits to the organization including cutting down the amount of malicious traffic that must be inspected by the network device and cutting down on unnecessary traffic that is clogging bandwidth and slowing application usage. This presentation will highlight the security and network benefits of reputation services and the elements for finding the best solution.

What is a vulnerability worth? If you are an attacker looking to launch an attack on an unsuspecting organization, your answer will be very different than the IT administrator running the organization. HP DVLabs runs the Zero Day Initiative, the industry’s leading organization for purchasing and disclosing vulnerabilities. In this unique position the DVLabs team must be keenly aware of both the black market for selling vulnerabilities and exploit information, as well as the potential costs to the enterprise affected by such vulnerabilities. Join Derek Brown, security research with HP DVLabs and liaison for the Zero Day Initiative for session on vulnerability disclosure and why it is so important to the security industry.

The third installment of the “Securing Your Applications” Web Seminar Series by Derek Brink, covers Mobile Applications.

Security concerns and the execution of strategy are among the key concerns for organizations’ tasked with securing mobile applications. This video delves into the details surrounding these issues and presents relevant research to help you better understand the risks associated with mobile security and its potential impact on your organization.

The security breaches at Sony and RSA received a tremendous amount of media coverage – and rightly so, given their impact on those organizations. However, there are hundreds of security events occurring every day that don’t make the news and are just as, if not more, dangerous. In this webinar, HP’s DVLabs will present the top five attacks it has seen that slipped by traditional media. The security incidents discussed during this presentation demonstrate new techniques that attackers are using as well as why these are significant to the enterprise. The intention of this webinar is to use these attacks as examples for helping attendees better identify where they are vulnerable so they can be prepared to address these vulnerabilities before they can be exploited.

The threat landscape continues to evolve with cyber attacks becoming more sophisticated and frequent. HP Digital Vaccine Labs (DVLabs) is at the leading edge of threat and vulnerability research and now every month, they’ll share with you the latest in threat and vulnerability research, exploit trends and a brief technical “deep dive” into hot topics and technologies.

Join us this month to hear about the 2011 Mid-Year Cyber Security Risks Report. Issued twice a year, this report leverages research from over 1,600 Zero Day Initiative (ZDI) researchers, the Open Source Vulnerability Database (OSVDB), as well as Web application vulnerability trends from HP Fortify and the Application Security Center and real attack data collected from HP TippingPoint Intrusion Prevention Systems deployed around the world. The result is a comprehensive view of the threat landscape for Web applications.

You will learn:
• Why Web application exploits are on the rise, despite fewer new vulnerabilities being discovered
• What vulnerabilities are most prevalent in today’s Web applications
• Best practices for mitigating two of the top web application exploits

Cyber criminals are using sophisticated obfuscation techniques to make their security attacks harder to detect and thereby more effective. In this Webinar, Jasiel Spelman, a security engineer with HP DVLabs, will present several types of source code obfuscation, focusing on techniques used in javascript. The session will also include background on how and why it is used and what tools are available for detecting attacks that use obfuscation.

Would you like fries with that? Cyber criminals are taking a cue from fast food chains and bundling exploit packages complete with all the tools needed to launch successful security attacks against various targets. These toolkits are on the rise and getting more dangerous. This webinar will provide an introduction to exploit toolkits, including the estimated number of infections and an overview on some of the CVEs they are affecting. The speaker will discuss several known toolkits including NicePack, Phoenix and BlackHole, citing the evolution of these attacks and obfuscation techniques.