9. Initial Attack: Word Press XMLRPC Attack
Athletic Apparel Shop Brick & Mortar and e-commerce
Application stack Custom code written in XML
Word Press content management system
MySQL database
Detection method Intrusion Detection System (IDS)
Log collection and analysis
Web Application Firewall (WAF)
22. Impact of Web App Attacks – Key Takeaways
• Web Apps are becoming more prevalent in organizations
- Use of open source versus traditional applications
• Web App attacks are “gateway” attacks
- Yahoo breach started with a Word Press hack
- 9,000 C&C servers compromised by Word Press hack
- Shadow IT
• Early Stage Detection
- Prevents our customers from dealing with large scale breaches