fbpx

Black Hat, DEF CON…Get Ready for Summer Camp!

ZeroNorth Platform

Publish Date

Jul 25, 2018

Written by

ZN Logo for Blog

ZeroNorth

Tagged with

  • ZeroNorth Platform

It’s that time of year again, when hackers and security professionals begin their annual pilgrimage to tech mecca: DEF CON 26, BSides and Black Hat, affectionately known to industry insiders as “Hacker Summer Camp.” All of us here at ZeroNorth wanted to share our thoughts, advice and predictions on this year’s hot and trendy topics to help you get the most out of the summer camp experience this year.

  1. Protect your company’s data as well as your own. You ARE at hacker conferences. This is the time of year when most vendors advocate using a “burner phone” and wearing a full Faraday cage underneath your suit jacket. While we think that’s a bit extreme, we can advise you to stay off the public networks, or even better disable wifi altogether. If you can’t do that, please make sure to use a VPN at all times. You won’t be happy if your personal passwords end up on DEF CON’s infamous “Wall of Sheep” or even worse, your employer won’t be happy  if their internal network is breached.
  2. Be prepared to hear about Equifax and Heartland Payment Systems A LOT. The Trustwave SIEM was declared dead in an RSA keynote a few years ago, and this year’s mega-breach lawsuits around Heartland has put the nails in the coffin.
  3. IoT. Botnets. Don’t act surprised. IoT was a hot topic last year and with no less than four different IoT talks, in conjunction with takedowns of the world’s largest IoT botnets this year, it will be THE hot topic again this year.
  4. Evil AI. From simple PoC code of Google’s TensorFlow being chained to Metasploit, to nation states applying machine learning to their big datasets, expect to hear about bad actors weaponizing AI and ML.
  5. X86 bugs. This was the year of hardware side-channel attacks. From Spectre and Meltdown to other speculative side channel attacks, there will be new research presented at Black Hat that will supposedly demonstrate new bugs that lead to privilege escalation. Expect major fallout from this post conference.

The ZeroNorth team will also be attending camp this summer so let us know if you would like to connect before, during or after the fun.


eBooks & Research Reports

Research Report: The Journey to True DevSecOps

Many questions emerge as the topic of DevSecOps is volleyed about. First, confusion exists in terms of understanding what it actually means to get to true ...

Read Now

Videos

Application Security: Bridging the Gap Between DevOps and Security Teams

When AppSec and DevOps teams aren’t aligned on how to deliver secure software, fast, organizations are at risk. This video discusses how to tackle this challenge ...

Watch Now

Related Articles

ZN Logo for Blog

DevSecOps

ZeroNorth Appoints Bruce McPherson as Vice President of Engineering

By ZeroNorth Jul 19, 2021

There are a number of paths companies may take on the journey to true DevSecOps. Regardless the route, one constant holds true: the need for a ...

Read More

Juneteenth

On the Importance of Juneteenth

By ZeroNorth Jun 18, 2021

This Saturday, June 19th—otherwise known as “Juneteenth”—marks an auspicious day dedicated to African American history and the official end of slavery in the US. Symbolically, it ...

Read More

The ZeroNorth DevSecOps platform offers options for your DevSecOps journey—getting started with AppSec, finding enterprise visibility or fully integrating security into DevOps.