I agree with Soda on quite a bit here.

Any areas that i should target?
Read up and understand exactally how a "Zero-Day" exploit works for the killer to keep his website up, and consider using Soda's idea of instead of having him keep one continual computer, maybe he cracks into other companies servers (won't have to go into detail, just say he did it again) and places his website over theirs. Having the hackers break in through SSH is MUCH more real than having them exploit a webserver, merely because a webserver won't allow as much of an ability to fully hack as ssh will (I have my reasons for saying that, so just trust me on it) This means you need to read up on ssh, how it works, what it does, and a basic understanding of how it was exploited.

So, things to target:

1. What a "Zero-Day" exploit is, and to remember to not overuse the term as an excuse to each hack in the book. Zero-Day exploits require a lot of skill in computer security, so maybe only use it once or twice for VERY important situations?

2. SSH. What it is, how it is used, how it works, and how it has been exploited in the past.