The third annual ShmooCon convention kicked off in Washington, D.C., on March 23 and will run throughout the weekend with a series of lectures and presentations covering a wide range of enterprise security issues.
Held at the Wardman Park Marriott Hotel through March 25, ShmooCon aims to serve as an East Coast hacker convention -- and an unofficial complement to the annual Black Hat confab in Las Vegas -- focused on technology exploitation, security products, and discussion of newly emerging threats.
As in previous years, the list of scheduled speakers includes some of the security industry's leading personalities, including an opening keynote from Avi Rubin, a professor at Johns Hopkins University's Information Security Institute and one of the most outspoken critics of existing electronic voting systems.
Some of the best-known hackers scheduled to present at the show include Johnny Long, known recently for his white hat attacks on Google technologies; G. Mark Hardy, a government security specialist; and Katie Moussouris, who works for Symantec and has been known to use her smile to get by corporate security guards and then break into their companies' networks.
Hoffman maintains that Jikto will illustrate how easy it is for attackers to create cross-site scripting and other Web-based code injection exploits that can be carried out against even well-known and highly secured sites and applications.