The August Meeting will be held on Tuesday, August 10, 2021 at 9:00am
This is a virtual meeting at the time of this posting
PRESENTATION:
Kevin Bong, Director of Penetration Testing and DFIR at Sikich
"Trends and Attack Techniques in Ecommerce Site Breaches"
Credit card breaches resulting from ecommerce website compromises continue to be common today, and attackers are continually improving their tools and techniques to bypass security controls and evade detection. As a PCI Forensic Investigator (PFI) firm, Sikich routinely performs incident response and digital forensics for these types of card breaches. This presentation will show common tools and techniques that attackers are using at every stage of these attacks (gaining access, creating backdoors, stealing card data and covering their tracks). In addition, the presentation will offer demonstrations of techniques useful for finding hidden malicious code and other indicators of compromise, and share key controls that can help prevent these types of attacks.
Kevin Bong is a Director within the Sikich IT Solutions and Cybersecurity practice and leads the penetration testing and forensic incident response teams. With over 20 years working in information security and 12 years of experience performing information security audits, penetration testing, risk assessments and forensic investigations, Kevin provides invaluable guidance to institutions affected by standards such as those related to the FFIEC, NIST, HIPAA and PCI.