In recent years, the amount of data tends to increase explosively due to the sophistication of services and the increase in scale of systems. In addition, with the advent of DBaaS, there are more than a few companies whose data exists in a hybrid environment of on-premises and cloud, making management more complicated. In this session, we will introduce Imperva product solutions along with the latest trend of data security "data centric security" framework to manage this complicated data.

These days, news about cyber crimes and personal information leaks that occur on the Web are flying around almost every day. For example, there was a time when a phishing method that attempted to break through multi-factor authentication and infiltrate a company's SaaS became a hot topic. Many people in charge of information systems must have felt uneasy. In this session, we will take up several web cybercrime cases that occurred in 2022, including phishing and payment application tampering, and look back on them from a technical perspective in an easy-to-understand manner. In addition, we will introduce the latest trends and mechanisms of countermeasure technologies with demonstrations. It is a must-see for those who have troubles such as "I can't update threat trends and technical information because I'm busy with my daily work"! Let's think together about what we can do to protect important information regardless of B2E or B2C!

In this video, an introduction to WebAPI security! We will explain in detail the three things you need to know in order to use APIs in your business.

I think that many companies have introduced CAPTCHA for the purpose of preventing password list type attacks and unauthorized logins. Just as everyone has the experience of not being able to solve a CAPTCHA at once, it is said that introducing a CAPTCHA creates friction for customers and causes some users to leave. In recent years, the number of services that break through CAPTCHAs has been increasing year by year, creating a contradiction that attackers can easily solve. In this video, we will use a demo to explain how attackers avoid CAPTCHAs.

In this video, we will explain in detail the vulnerabilities and new threats faced by modern websites, an analysis of the attack methods of the attacker group "Magecart", and points to consider in protecting customer information.

In this session, how are stolen credentials actually misused after being stolen by phishing? I will explain the actual situation.