Webinars On Demand

WebDefend and the CWE/SANS Top 25 Most Dangerous Programming Errors 2010

The CWE & SANS has announced the Top 25 Most Dangerous Programming Errors for 2010. The top industry experts from around the world were consulted to assemble this list, including Ryan Barnett, Director of Application Security Research here at Breach Security.  Ryan Barnett has taken this list and compiled a report that addresses how WebDefend can help to identify and block the CWE/SANS Top 25 Issues.  In this webinar you will get a side-by-side comparison of the web-specific CWE/SANS Top 25 issues and a reference outlining how WebDefend's collaborative attack detection can help to address each issue.

Lessons Learned From The Underground
Example Attacks From the WASC Distributed Open Proxy HoneyPot Project

Do you wonder what types of web applications hackers are targeting? And how attackers are exploiting vulnerabilities? What about the top passwords that hackers target? This webinar examines real-world web attack data to provide insight into the types of vulnerabilities cyber criminals are currently targeting.

Top Web Incidents and Trends of 2009 and Predictions for 2010

Was your company the victim of a hacking attempt or attack last year? Are you concerned about the threats you may face in 2010? With each passing year, web security threats change and evolve to become potentially more dangerous to businesses and organizations. The Web Hacking Incident Database (WHID) monitors and analyzes web threats on an ongoing basis, providing valuable insight into new vulnerabilities hackers are looking to exploit. This webinar outlines and examines the top web incidents and trends of 2009, such as Twitter attacks and serving malware to clients, as well as predictions for what hackers will be doing in 2010. Download this webinar to understand how you can best prepare for future web application threats and attacks.

Distributed WAF Architectures: Defense in Depth

As many organizations are looking to leverage “in-the-cloud” solutions, security becomes paramount. How can organizations ensure that cloud-based services offer appropriate web application security measures? Web application firewalls have traditionally been deployed on-site in the organizations datacenters, however this architecture doesn’t scale appropriately for cloud-based security. Ideally, organizations should be able to deploy both cloud-based and datacenter-based WAF solutions to provide a holistic view of malicious traffic.

This webinar explains how Breach Security has partnered with Akamai to present a combined Edge-to-Origin WAF solution that allows users to have a consolidate view of web application threats

The Web Hacking Incidents Database 2009: Bi-Annual Report

The much anticipated Web Hacking Incidents Database (WHID) 2009 Bi-Annual Report is ready for download. The WHID project is dedicated to maintaining a record of web application-related security incidents. The WHID’s purpose is to serve as a tool for raising awareness of web application security problems and provide information for statistical analysis of web application security incidents. During the first half of 2009 the report findings show a steep rise in attacks against Web 2.0 sites - this is the most targeted vertical market with 19% of the incidents.  Attack vectors exploiting the Web 2.0 features such as user-contributed content were commonly employed. Download this webinar today to learn more about the latest in web application security.

Outsmarting Tomorrow’s Hackers Today
Beyond Web Application Firewalls

Last year, web attackers unleashed a new type of SQL injection that compromised more than 500,000 web sites, according to Breach's Web Hacking Incidents Database (WHID) 2008 Annual Report. Unfortunately, network IDS/IPS and first-generation web application firewalls (WAFs) don't protect against today's sophisticated web application threats, such as cross-site scripting, injection flaws and other vulnerabilities listed on the OWASP Top 10. IT professionals need the necessary visibility into their web application security to understand how applications are being used, when abnormal behavior emerges and what coding mistakes should be remediated.

Anti-Automation: Identifying and Controlling Automated Clients

Cross-site Scripting (XSS) attacks are universally seen as the #1 security vulnerability facing web applications. Don’t wait another today to learn how protect your organization - join Ryan Barnett, Director of Application Security at Breach Security, as he presents:

• An overview on XSS (techniques, consequences and vulnerabilities).
• The two major categories of XSS attacks: Reflected and Stored.
• Today’s latest statistics and findings regarding XSS attacks.
• Defensive tactics to prevent XSS attacks.
• Real-world examples and offensive techniques aimed at short circuiting XSS attacks.