Session Title: CMS Hacking 101
With the rise of blogs, forums, online magazines, e-commerce, and corporate websites, many organizations are turning to Content Management Systems (CMS), such as Joomla or SharePoint, to create rich websites. CMSs simplify website delivery – but they also expose your organization to a new set of vulnerabilities. Join Mike Sanders, Imperva Sr. Security Engineer, to see how malicious hackers exploit vulnerabilities found in popular Content Management Systems to systematically identify and attack unsuspecting organizations. This presentation explores:
What a CMS-based site is and examples of recent CMS originated hacks
Trends in automated CMS hacking
How to secure your website against vulnerabilities found in CMS systems
Michael Sanders is a Senior Security Engineer with over 15 years experience specializing in security, infrastructure, systems and integration. He is a subject matter expert (SME) in perimeter security, application layer protection, wireless networking, bandwidth management, and intrusion prevention. His broad background spans multiple disciplines including: project management, systems integration, incident response, business continuity, content filtering, cryptography, telecommunications, and access control.