October was National Cyber Security Awareness Month. Everywhere across the globe various events are held to further awareness and education in cyber security. In Bucharest, Romania, the 5th edition of the annual Bucharest OWASP AppSec conference was organized at Hotel Caro with over 300 participants. It was a 3-day conference with training days, Capture the Flag (CTF) contests, and educational presentations and panels. Industry practitioners shared their experiences, knowledge, and projections.
Adobe was a sponsor of this year’s conference and our security team from Romania attended and spoke at the conference. Members of our team participated in a “Women in AppSec” panel to discuss issues facing women in the field and possible activities to encourage more women to become cyber security professionals. The panel included both managers as well as practitioners in the field. Feedback about Adobe’s participation and our team’s talks on social media was very positive throughout the conference.
There were two tracks this year at the conference, both containing a lot of industry-focused subjects. The first track included talks on the Application Security Lifecycle, N different strategies to automate OWASP ZAP, Security champions 2.0 discussing how to evolve security champion programs, Man-in-the-browser attacks, and How my SVM nailed your Malware. The second track covered the topics of Threat modelling, Testing for cyber resilience: tools & techniques for adversary attack/defense simulation, Less Known Web Application Vulnerabilities, Overview of TLS v1.3, a talk from our Adobe team on measures authentication systems can take to protect their users against credential stuffing, BDD Mobile security testing, and Securing the code and waiting for skilled hackers.
If you are in Romania next year for the OWASP conference, be ready to grab a coffee at the lunch break with the Adobe team to discuss our mutual security passions. We will also continue to highlight the efforts of our Romanian and other global security teams here on the Security@Adobe blog.
Security Engagement Specialist