Vulnerability handling for the masses

Presented at Disobey 2023, Feb. 17, 2023, 9:15 p.m. (60 minutes).

This talk presents case examples of trying to cope with server vulnerabilities and their aftermath in Finland. Cases include openssl, Exchange, and Confluence vulnerabilities and various areas of their handling: network scanning, contacting system owners, analysing incidents as well as detecting and reversing backdoors.

Presenters:

  • Jussi Eronen - Chief specialist at NCSC-FI
    Juhani "Jussi" Eronen has worked at the National Cyber ​Security Center since 2006, with various responsibilities related to vulnerabilities, incidents and information assurance. In recent years, the focus of his work has shifted to researching and ensuring the security of future technologies. His background is in software vulnerability testing and dependency analysis in the OUSPG group of the University of Oulu.

Links: