Sponsored by:

ISOI XVII: 3-4 November, Austin TX, Hosted by NSS Labs

---

Just a quick note to let you know of the venue for ISOI XVII in Austin: ISOI XVII registration is now open: http://isoi17.eventbrite.com ISOI XVII Meeting Venue: Hotel Van Zandt 605 Davis Street Austin TX 78701 http://www.hotelvanzandt.com/ NSS Labs managed to get a rate of $319 which is a little more than we had hoped, for but that time of year in Austin it's pretty good - it's convention season in Austin. The reduced rate has been extended until the day of the meeting. If you have any problems booking at the reduced rate, let me know. Here are the instructions for booking a room: Guests can use the following link: https://gc.synxis.com/rez.aspx?Hotel=64233&Chain=10179&group=ISOICONF (make certain the dates selected are those of the program) Alternatively guests can enter "ISOICONF" in the Meeting/Group Code field. Lastly, for guests who prefer call-in reservations, they can reference "ISOI Conference" when calling 1-800-KIMPTON. The Call for Presentation Proposals has concluded, and the agenda will be posted by Saturday, 15 October 2016. I am looking forward to seeing everyone in Austin at ISOI XVII! ISOI XVII Agenda
Thursday, 3 November 2016
08:00-09:00 Breakfast, Registration
09:00-09:15 Welcome to ISOI XVII! Intro, announcements, logistics, etc.
09:15-10:00 Monty St. John, ATX Forensics: Structured Threat Intelligence
10:00-10:45 Donald McCarthy, MyNetWatchman: Distributed Credential Replay Attacks: Compromising All the Things
10:45-11:15 Break
11:15-12:00 Kevin Valle, NSS Labs: Vulnerability Dynamics: A Decade in Review
12:00-13:00 Lunch
13:00-13:45 Bing Song and Yiming Gong, Qihoo360 Netlab: Tracking the 'Nitol' DDoS Botnet
13:45-14:30 Tim April: The future of DDoS and some lessons learned from recent events.
14:30-15:00 Break
15:00-15:45 James Pleger and Adam Hunt, RiskIQ: Unique methods to detect malicious pages at scale
15:45-16:30 Daniel Grzelak, Atlassian: Your next big breach will start in AWS
16:30-17:15 Andrew Hay, DataGravity: Making Lemonade with (Data) Lemons
18:00-20:00 ISOI XVII Fun Night (Sponsored bar and appetizers)
Friday, 4 November 2016
08:00-09:00 Breakfast, Registration
09:00-09:45 Craig Williams, Cisco Talos: Samsam: Ransomware Evolved
09:45-10:30 Brad Duncan, Unit 42, Palo Alto Networks: Tracking pseudo-Darkleech: One exploit kit-based campaign's changes in 2016
10:30-11:00 Break
11:00-11:45 Simon Conant, Unit 42, Palo Alto Networks: RAT Nest - When an APT isn't.
12:00-13:00 Lunch
13:00-13:45 James Scalise, CrowdStrike: Tracking the Gootkit Banking Trojan
13:45-14:30 Chris Wakelin, Proofpoint/Emerging Threats: Mass Analysis of Large Malicious Spam Campaigns
14:30-15:00 Break
15:00-15:45 David Dunn, Kroll: The case of Roman Seleznev: The investigation, arrest, trial, and conviction
15:45-16:30 Sunny Kumar, CapitolOne: An ensemble model approach for detecting malware callouts in realtime network traffic
16:30-17:00 Closing remarks