Behind the Package: Unmasking Malicious Intent in Software

We're excited to announce an in-person meetup and networking event! Please come join us for an exciting presentation and amazing networking with software engineers, security professionals, and others in the AppSec space.

This will be an in-person event sponsored by Checkmarx and hosted by Great American Insurance Group. We thank Checkmarx and Great American Insurance Group for their support of OWASP Cincinnati.

Schedule
5:00 - Presentation
6:00 - Networking, at Moerlein Lager House (115 Joe Nuxhall Way, Cincinnati, OH 45202)

Presentation Abstract

In an increasingly interconnected and digitized world, software applications have become prime targets for malicious actors seeking to exploit vulnerabilities. One common and stealthy method employed is the use of malicious packages, which harbor hidden dangers within their seemingly innocent exteriors. This presentation aims to shed light on the inner workings of these evil entities and equip AppSec professionals with the knowledge and tools to identify and mitigate such threats effectively. By exploring the techniques employed by attackers, dissecting real-world examples, and examining best practices for package management and security, attendees will gain a deeper understanding of the risks associated with malicious packages and acquire actionable strategies to fortify their software defenses. Join us as we delve into the shadows, uncovering the secrets behind malicious packages, and empowering AppSec professionals to safeguard their software from hidden threats.