SANS Community Night Talk – Why are We Still Getting Pwned? (16 August 2018)

In this edition of SANS Community Night scheduled on 16 August 2018 in Singapore, SANS Certified Instructor Kevin Ripa will give a talk titled “Why are we still getting pwned?”. Hardly a day goes by where we don’t hear about yet another breach, whether it be ransomware or theft of data. Why does this continue to happen? Each and every one that comes up turns out to have been facilitated due to a lack of some type of action by someone.

What are the top three reasons for this?

The answers are absolutely not what one would expect to hear, nor what one is used to hearing. This lecture outlines the top three reasons why these breaches continue to happen. We then look at a number of quick wins that one can implement immediately upon returning to work.

We will achieve end to end coverage, starting with perimeter quick wins, and moving along through the Enterprise, covering how Heartbleed could be rendered to nothing more than a nosebleed, and how the one thing one could have done to minimise, if not eliminate the spread of Petya.

Kevin currently serves as president of The Grayson Group of Companies, which consists of Computer Evidence Recovery, Pro Data Recovery Inc., and J.S. Kramer & Associates, Inc. He provides investigative services to various levels of law enforcement, Fortune 500 companies, and the legal community. He is past president of the Alberta Association of Private Investigators and a former member of the Canadian Department of National Defence, where he served in both foreign and domestic postings.

Kevin has designed, produced, hosted, and taught numerous industry-related courses, and has had over 100 speaking and training engagements with industry and law enforcement around the world. He has also authored dozens of articles, as well as chapters in a number of manuals, books, and training texts on the subjects of computer security and forensics. Kevin holds a number of industry certifications, including four GIAC certifications (GCFE, GCFA, GSEC, GISF), EnCase Certified Examiner, Certified Data Recovery Professional, and Licensed Private Investigator, and he previously held the Certified Penetration Tester and Certified Ethical Hacker certifications.

Date: 16 August 2018
Time: 6:00PM – 7:30PM
Venue: Level 3 – Grand Copthorne Waterfront Hotel, 392 Havelock Road, Singapore 169663

To register for the talk, please click here and log in with your SANS account to complete the registration.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.