Me and a security consultant from our department managed to arrive at PWTC around 1:40pm (she parked suspiciously at no parking zone. I told her to expect that her car will vanish by the time the forum concluded but thankfully it didn’t happen).

One thing for sure, it’s damn hard to find the place. I mean the exact location where the Forum will be held. Asking direction from the ppl there creates more confusion to us. Ahh we managed to wonder around like a bloody tourist to find the exact hall. At least we managed to even reach the Pan Pacific Hotel based on the direction given by one of the guards there. Btw met geek00l and mel who happen looking for the hall as well. (p/s: At least IMHO we did get the hall name right compare to those two but heck they managed to reach that hall earlier than us)

Need to line up for registration to get our door gift which is a laptop backpack (neat eh and geek00l told me to blog about it hehehe) and with brochures, magazines inside the back pack. So in the end me and my consultant end up sitting beside mel and geek00l. Unfortunately I didn’t bring my lappy along so end up taking down notes on my book.

So as for 1st presentation with the title Internet Banking: Issues and Best Practice by Mr Adli, from cybersecurity Malaysia. Generally it about the main issue faced by banks that offer online banking to their customers; Phising, spamming, Identity theft and so on. I managed to jot down few things (and some of it I can’t read it.. Duh! hahaha). The discovery of the incidents based on the reported cases coupled with statistics and other neat graph. Anyway a good presentation. Get a good mark from me . On other notes, yeah, super flux method will definitely caused problem to us especially in security industry.

For 2nd Presentation, the title is Bluetooth vulnerabilities and Exploits by Mr Ruhama also from cybersecurity. A good topic to discuss but after a good presentation from Mr Adli, this one is lil bit a let down. More on reading the slides instead of elaborate the slide and IMO, the slide is lil bit congested. A brief on Bluetooth history, the technology, the architecture, the stack (shud elaborate more on this) and most of the tools can be found in backtrack cd. Anyway a lil bit let down while performing the live demo as 1st, it needs a vulnerable bluetooth version (I guess) handphone as in his example, Sony Ericsson T610. Well he managed to scan all the bluetooth devices in the hall but can’t exploit em. IMO, for handphone, most of the ppl will always buy the new one or having a handphone that has no bluetooth capability at all (e.g. mel’s )  Anyway again it’s a good topic and I’d love to learn more about it.

After a good and damned nice tea + cigarette break, the session continued with a presentation from Mr Suresh Kumar of Maxis about Network Threat and Intrusions: Security Perspective from the ISP. Another good presentation, about the IDS and the way that ISP gonna handle all the attacks by implementing the Sink Hole. Well I read about this Sink Hole Implementation from Richard Bejtlich’s Extrusion Detection. One thing that I noticed is Mr Suresh from one of his explanation define IDS from network perspective only. Maybe he shud include the existence of HIDS as well. Anyway good and clear presentation. Good mark from me.

And the last presentation is from Mr Mohamed F. Haron from Intel on Web Intrusion Life Cycle. Basically it is a good presentation but lil bit dull but perhaps because of his VMware crashes before his presentation and that apps failed on him again and again so no live demo as well. Anyway the content of his presentation is structured and methodological which for is nice for a beginner (including me as well). My consultant managed to ask him to send his presentation slide to her for later use .

Overall it’s good to have this kind of knowledge sharing forum but perhaps what we lack is good speakers. I mean a speaker who can draw the crowd to his speech and presentation. And at least I get a lappy back pack (OK but I wont use it as mine is better) and of cause the mysterious gift (few mouse pads) for us.

Maybe I will participate another Technical forum in the future if I had the chance.