Date: 07 April 2011
Click here for printable version
AusCERT Online Crime Symposium 2011Sunday, 15 May 2011
Cypress Room, RACV Royal Pines Resort, Gold Coast, Australia |
Sponsor
|
Background
Online crime is worsening at a rate that demands better, more coordinated strategies among industry, government, law enforcement and CERTs. The financial rewards for online criminals is high and cyber criminals generally operate with impunity. To combat this threat, more effective strategies are required from all sectors, both nationally and internationally.
Target Audience
- Government, law enforcement and private sector personnel involved in the development of policies or strategies for e-security or e-government, or who have responsibility for investigations either within their own organisations or for the broader community.
- High level, focused briefings with some technical detail aimed at information security managers, policy makers and stakeholders within the telecommunications, domain name management or other Internet industries.
- A closed event, not open to the general public.
Purpose
- Increase awareness of the nature and impact of online crime among government and industry sectors and the challenges it poses for prevention, detection and response.
- Increase awareness of the nature and impact of various online crime types and the tools used by criminals engaging in this activity.
- Seek support for initiatives in Australia that will provide broad benefit for the Internet using community and for users and providers of e-commerce or e-government services.
Sponsor
AusCERT gratefully acknowledges the support of ESET which has assisted us in holding this event.
Program
| 8.30 – 9:00 Coffee and Registration |
9:00 - 9:20
20 minutes |
Introduction
Graham Ingram
General Manager,
AusCERT |
|
Slides
9:20 – 10:00
40 minutes |
Piracy on the iSeas
Marcus Sachs, Vice President, National Security Policy, Verizon Communications, Verizon (USA) |
This presentation will be a discussion about the parallels between the Barbary Coast pirates of the late 1700s and early 1800s, and the online criminal communities of today; and the many lessons that can be learned! |
Slides
10:00 - 10:40
40 minutes |
State of the nation - an update on malware and phishing threat landscape in the UK
Ali Imanat, E-Crime Consultant, Security Unit, UK Payments (United Kingdom) |
|
| Morning Tea 10:40 - 11:00 (20 minutes) |
11:00 - 11:40
40 minutes |
Cybercrime - Now and into the future
Macleonard Starkey, CERT Australia
|
|
|
11:40 - 12:20
40 minutes
|
A Case Study of the TJX Network Intrusion
Peter Gannon
Special Agent, US Secret Service (USA) |
|
| Lunch 12:20 - 13:30 (1 hour 10 minutes) |
Slides
13:30 - 14:10
40 minutes |
ATO threat intelligence in the online environment
Len Kleinman
Australian Taxation Office (Australia) |
Overview on ATO Threat Intelligence program
- Building and Developing this capability
- Focus on ATO IT security incidents
- Trends in online scams involving the ATO
- Dissection of a scam
|
14:10 - 14:50
40 minutes |
Operation Cymru – a botnet investigation case study
Damian Britton,Detective Brevet Sergeant
Investigator, Electronic Crime Section, South Australian Police
and
Alex Tilley
Technical Specialist, High Tech Crime Operations
Australian Federal Police |
A case study on an investigation into an Adelaide resident who operated a botnet, infected computers around the world, obtained credit card information, accessed victim bank accounts, operated an underground forum and sold malware. |
| Afternoon Tea 14:50 – 15:20 (30 minutes)
|
Slides
15:20 - 16:00
40 minutes |
Who turned out the lights?
Eric Byres, Byres Security Inc (Canada)
|
The Stuxnet worm awakened much of IT world to the issues of cyber security for Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) systems. ICS/SCADA was typically considered immune to the network events that have wrecked so much havoc on corporate information systems, but the Stuxnet event, along with at least 150 other incidents documented in the Repository of Industrial Security Incidents (RISI), indicates this complacency is misplaced.
In this presentation we will outline how SCADA technology is used in critical systems ranging from the electrical grid and gas pipelines to sewage treatment plants. Next we look at the key differences between the IT and SCADA worlds and why SCADA security can be a challenge. We will discuss how the trends in malware will affect the reliability of these vital infrastructures over the next decade and how industry needs to respond. Finally we’ll look at the standards and technologies evolving for SCADA and manufacturing security and how this may impact IT security as a whole.
|
16:00 - 16:40
40 minutes |
A case study in malvertisement
Kayne Naughton, Shadowserver (Australia) |
Due to the difficulty detecting and tracing malvertisement attacks, they remain largely under the radar but I believe they are responsible for a large share of infections.
This presentation provides a timeline and elements of incredibly well formulated emails used to social engineer a web site into running a malvertisement ad, and what the industry can do about these threats.
|
|
16:40 - 16:50
10 minutes
|
Closing remarks
Graham Ingram
General Manager, AusCERT
|
|
| Networking Drinks 16:50 – 18:00 (1 hour 10 minutes)
|
This program may be subject to change.
Cost and Registration
The registration fee is $275 (including GST) and includes lunch, morning and afternoon tea. Symposium speakers and law enforcement are free.
To register as an attendee please
send an email to symposium2011 at auscert.org.au. Please specify for each delegate:
- Name
- Position title
- Organisation
- A contact telephone number and email address
- Billing address (for the registration invoice).
For catering purposes please register before Friday, 6 May 2011. Please advise if you have any special dietary requirements.
Please note that we will not accept 'walk-in' registrations on the day of the Symposium - all delegates must register by 6 May 2011.
Accommodation at AusCERT Conference Discount Rates
Symposium delegates may obtain AusCERT conference rate discounts for
bookings made at:
- RACV Royal Pines Resort (for Saturday, 14 May 2011)
- Holiday Inn Surfers Paradise (for Saturday, 14 May 2011)
- Crowne Plaza Surfers Paradise (for Saturday, 14 May 2011).
Please note there will be no shuttle bus service from either the Holiday Inn Surfers Paradise or the Crowne Plaza Surfers Paradise to the Crowne Plaza Royal Pines in the morning of Sunday, 15 May, 2011.
If you wish to take advantage of these hotel accommodation conference-rate discounts, please send an email to:
Steven Turner (steven.turner at conferenceit.com.au)
Inquiries
Please feel free to contact us on symposium2011 at auscert.org.au if you have any additional questions regarding this event.
|