The Open Web Application Security Project (OWASP) is a 501(c)(3) worldwide not-for-profit charitable organization focused on improving the security of software. Our mission is to make software security visible, so that individuals and organizations worldwide can make informed decisions about true software security risks.
Our next speakers:
E-Crime and Fraud Intelligence Management in Financial Institutions
Dougie Haywood
Based upon his experience in cybercrime investigation, Dougie Haywood will discuss some of the key threats posed by cybercrime including malware and phishing and how they are currently dealt with by the industry.
Dougie is E-Crime and Fraud Intelligence Manager at Tesco Bank. Prior it this he worked in the Met Police Central E-Crime Unit. He is working towards a PhD at The University of London and lectures on cybercrime at The University of Edinburgh.
------------------
The Inner HTML Apocalypse: How mXSS Attacks Change Everything we Believed so Far
Dr.-Ing. Mario Heiderich
Everything about Reflected, Persistent and DOM based Cross Site Scripting attacks have already been discussed, so why the need for another talk on the subject? In his talk, Mario will introduce and demonstrate this recent technique called mutation-XSS, proving there is still a lot to be discussed about XSS attacks.
Mario is a researcher at Ruhr University Bochum and the director of Cure53, a security consultancy and penetration testing company. He has presented in many conferences, including the AppSec Research OWASP Conference in Hamburg, August 2013.
More details: www.owaspeastscotland.eventbrite.co.uk
Attending: 1 person.
Appleton Tower 11 Crichton St Edinburgh, Midlothian, EH8 9AB