TARDIS - Rolling Back the Clock on CMS-Targeting Cyber Attacks

Explore a groundbreaking research presentation on cybersecurity for Content Management Systems (CMS). Delve into the study of nightly backups from over 300,000 unique production websites, uncovering the attack landscape and assessing the effectiveness of backup and restore protection schemes. Learn about TARDIS, an automated provenance inference technique that revolutionizes the investigation and remediation of CMS-targeting attacks using only nightly backups. Discover how this innovative approach identified 20,591 attacks lasting between 6 and 1,694 days, some of which remained undetected. Gain valuable insights into the evolution of multi-stage attack patterns and the potential for improving cybersecurity measures in the website hosting industry.