Australian web site compromises
This presentation will target IT Directors, CTOs, Infrastructure managers, system administrators and developers.
AusCERT is fortunate to receive data and reports from numerous sources regarding compromised websites in Australia. A lot of the reports are made to AusCERT to get assistance with the removal of malicious content hosted on legitimate websites.
This presentation will give an overview of trending compromises and uses of websites in Australia. We will show some anonymised statistics and talk about techniques used to compromise a website and then offer some advice to mitigate the attacks.
 |
Zane Jarvis' Biography
Zane Jarvis is a Senior Information Security Analyst with AusCERT. Zane has been working with AusCERT since July 2007. He is part of the coordination centre team and regularly is involved with incident response. Zane also assist law enforcement agencies with investigations into criminal activity. He also assist with internal development using Perl, PHP, MySQL and possibly others.
Before AusCERT, Zane worked as a software engineer and systems administrator for a defence contractor that supplied software based solutions for the Department of Defence, in particular the Royal Australian Air Force. Various technologies were used in the projects including the development languages such as C, C++ and web applications were developed using ASP.NET with C#.
Zane has experience with various Operating System technologies include Windows and UNIX-like systems such as FreeBSD, Debian and Red Hat. Additionally, he has been involved in organising conferences such as the AusCERT Conference from 2008 to 2011. In 2011 he was the program chair. |
