home.social

#black-hat — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #black-hat, aggregated by home.social.

fetched live
  1. NoiseFest is just a few weeks away!🎉 If you're in Las Vegas for #BlackHat or #DEFCON, come join us for a night of cold drinks, good company, and 60s and 70s vibes. 🏵️

    📅Thursday, August 6th | 6–9 PM PT | Las Vegas
    🔗RSVP: info.greynoise.io/events/black

    #NoiseFest #GreyNoise #cybersecurity

  2. NoiseFest is just a few weeks away!🎉 If you're in Las Vegas for #BlackHat or #DEFCON, come join us for a night of cold drinks, good company, and 60s and 70s vibes. 🏵️

    📅Thursday, August 6th | 6–9 PM PT | Las Vegas
    🔗RSVP: info.greynoise.io/events/black

    #NoiseFest #GreyNoise #cybersecurity

  3. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code THREATLOCKER. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  4. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code THREATLOCKER. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  5. Atredian Matt Burch (@emptynebuli) recently spoke with #DarkReading about his upcoming #BlackHat talk "The Cost of Obscurity: Exploiting the ATM Supply Chain" and the 9 CVEs found in CryptoPro Secure Disk. 🔒️ 💵
    Bottom line: Disk encryption doesn't help much if the keys are stored right next to the lock. Read the full story here: buff.ly/E1BRVhk #BlackHat #DefCon #Infosec #Cybersecurity

  6. Atredian Matt Burch (@emptynebuli) recently spoke with #DarkReading about his upcoming #BlackHat talk "The Cost of Obscurity: Exploiting the ATM Supply Chain" and the 9 CVEs found in CryptoPro Secure Disk. 🔒️ 💵
    Bottom line: Disk encryption doesn't help much if the keys are stored right next to the lock. Read the full story here: buff.ly/E1BRVhk #BlackHat #DefCon #Infosec #Cybersecurity

  7. Useful information can lead to real impacts. Visit RFJ at #BlackHat booth #1967 to learn about our up-to-$10 million reward offers for information on foreign government-linked malicious cyber actors. Learn more: rfj.tips/seAvzy

    #BHUSA #BlackHatUSA #BlackHat2026

  8. I’ve always been community first.

    If I have a limited conference budget, I’d rather spend it where I can learn, meet people, collaborate, make videos, and bring that knowledge back to all of you.

    #DEFCON #BlackHat #Cybersecurity #BSides #InfoSec
    4/4

  9. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code THREATLOCKER. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  10. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code THREATLOCKER. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  11. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code THREATLOCKER. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  12. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code THREATLOCKER. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  13. RE: infosec.exchange/@agent0x0/116

    @agent0x0 and @secureideas had be on their @sharedsecurity podcast, where we told stories like when Tom made me break in to a building, when @meeas and @secureideas fought over a Dora the Explorer backpack on Justin's first day at InGuardians, and #Kubernetes #AI hacking.

    We also talked about working to create the same sense of belonging we got at @defcon via the Kubernetes CTF at DEF CON and about my #BlackHat class: Agentic AI-Aided Kubernetes Attack&Defense.

  14. RE: infosec.exchange/@agent0x0/116

    @agent0x0 and @secureideas had be on their @sharedsecurity podcast, where we told stories like when Tom made me break in to a building, when @meeas and @secureideas fought over a Dora the Explorer backpack on Justin's first day at InGuardians, and #Kubernetes #AI hacking.

    We also talked about working to create the same sense of belonging we got at @defcon via the Kubernetes CTF at DEF CON and about my #BlackHat class: Agentic AI-Aided Kubernetes Attack&Defense.

  15. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code TWIT. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  16. TWiT will be live from Black Hat on August 5 with Windows Weekly and Security Now from the ThreatLocker booth. Security research, real risk, and fewer empty buzzwords. Code TWIT. blackhat.com/ #sponsor #BlackHat #Cybersecurity #Sponsor

  17. I'm already sensing an uptick in #defcon / #blackhat related posts in my feed lately, so if you're attending either this summer, don't forget the #1 hacker conference rule:

    "Unattended laptops will be upgraded to OpenBSD -current"

    Buy my mix tape

  18. I'm already sensing an uptick in #defcon / #blackhat related posts in my feed lately, so if you're attending either this summer, don't forget the #1 hacker conference rule:

    "Unattended laptops will be upgraded to OpenBSD -current"

    Buy my mix tape

  19. Black Hat is almost here.

    Forget the vendor swag and AI buzzword bingo. The real value is knowing which talks, Arsenal demos, summits, and hallway conversations are worth your time. I dug through the schedule and put together my insider's guide to Black Hat USA 2026: the research I'd prioritize, the sessions I wouldn't miss, and how to get the most out of Hacker Summer Camp before DEF CON kicks off. See you at Mandalay Bay. #blackhat #hackersummercamp #bsideslv

    semgrep.dev/blog/2026/black-ha

  20. Black Hat is almost here.

    Forget the vendor swag and AI buzzword bingo. The real value is knowing which talks, Arsenal demos, summits, and hallway conversations are worth your time. I dug through the schedule and put together my insider's guide to Black Hat USA 2026: the research I'd prioritize, the sessions I wouldn't miss, and how to get the most out of Hacker Summer Camp before DEF CON kicks off. See you at Mandalay Bay. #blackhat #hackersummercamp #bsideslv

    semgrep.dev/blog/2026/black-ha

  21. Assholes Will Always Exist

    Over the years they've been called a lot of things. Some of the terms, these miscreants actually donned like a cape or wore the disparaging noun as a badge of honor:

    - #cracker
    - #list_bully
    - #foreign_agent
    - #incel
    - #phishermen
    - #spammer
    - #blackhat

    The list is truly, much too long to collate in a single fly by topical mention; and that's really not the point of what I'm writing about here either. What is absolutely pernicious, is the #MiTM style attack on software distribution rising to a level where even the source cannot be held in high confidence.

    When these atrocious acts become the commonplace verbs to the infamous nouns above it is time that each and every one of us stand vigil and at the ready to come to the aid of our community members. Here's one such place where we can begin - the #AUR: https://archlinux.org/news/active-aur-malicious-packages-incident/

    #tallship #FOSS #malware

  22. NoiseFest is BACK 🎉
    We're throwing our 4th annual party during Black Hat / DEF CON 2026 with a 60s and 70s theme 🏵️🎸✌️. Cold drinks, new connections, and stories from the front lines of cybersecurity at House of Blues B-Side in Las Vegas.

    🔗RSVP: info.greynoise.io/events/black

    #BlackHat #DEFCON #NoiseFest #GreyNoise #cybersecurity

  23. NoiseFest is BACK 🎉
    We're throwing our 4th annual party during Black Hat / DEF CON 2026 with a 60s and 70s theme 🏵️🎸✌️. Cold drinks, new connections, and stories from the front lines of cybersecurity at House of Blues B-Side in Las Vegas.

    🔗RSVP: info.greynoise.io/events/black

    #BlackHat #DEFCON #NoiseFest #GreyNoise #cybersecurity

  24. Im Vorfeld der #BlackHat 2026 in Las Vegas nimmt Microsoft mutmaßlich das nächste Fettnäpfchen in der Community der Sicherheitsforscher mit. Die sollen dem MSRC angeben, ob sie über Schwachstellen in MS-Produkten reden, ob Meldungen mit Referenz gibt.

    borncity.com/blog/2026/06/06/b

  25. Im Vorfeld der #BlackHat 2026 in Las Vegas nimmt Microsoft mutmaßlich das nächste Fettnäpfchen in der Community der Sicherheitsforscher mit. Die sollen dem MSRC angeben, ob sie über Schwachstellen in MS-Produkten reden, ob Meldungen mit Referenz gibt.

    borncity.com/blog/2026/06/06/b

  26. Oh right, #BlackHat is coming up so I will be utterly buried in unsolicited emails and calls from "AI Security" companies and it's already happening and I hate it so much and I did my time at that con already and no. Just no.

  27. Oh right, #BlackHat is coming up so I will be utterly buried in unsolicited emails and calls from "AI Security" companies and it's already happening and I hate it so much and I did my time at that con already and no. Just no.

  28. @patrickcmiller

    Worth remembering that the difference between a #whitehat and #blackhat Ai is just a couple of startup prompts.

  29. @eff at #BlackHat USA

    August 5, 2026 - 8:00am PDT to August 6, 2026 - 6:00pm PDT

    Mandalay Bay | #LasVegas , #NV

    EFF will be back in Las Vegas, NV for #BlackHatUSA ! We're excited to be in the Business Hall, where you can come say hi and learn more about the work we are doing to defend digital freedoms. You can even pick up a special member gift as a token of our thanks when you take advantage of our membership specials or donate!
    #privacy #security #rights #hacking

    eff.org/event/eff-black-hat-us

  30. @eff at #BlackHat USA

    August 5, 2026 - 8:00am PDT to August 6, 2026 - 6:00pm PDT

    Mandalay Bay | #LasVegas , #NV

    EFF will be back in Las Vegas, NV for #BlackHatUSA ! We're excited to be in the Business Hall, where you can come say hi and learn more about the work we are doing to defend digital freedoms. You can even pick up a special member gift as a token of our thanks when you take advantage of our membership specials or donate!
    #privacy #security #rights #hacking

    eff.org/event/eff-black-hat-us

  31. Kang Ali's Black Hat Arsenal tool "DursGo" is published.

    DursGo - is Web App scanner written in Go and has embedded LLM inside it.

    Go watch the talk!

    youtube.com/watch?v=p5aAzK9WnG0

    #cybersecurity #blackhat #blackhatarsenal #dursGo #indonesia

    @[email protected] @[email protected]

  32. Howdy folks! We are excited to announce the Call For Presentations(CFP) for @bsidestc 2026!
    This year’s conference theme is “Building Resilience“.

    We would love to hear your submissions of how you or people in your community have been “building resilience”.

    Submissions will be open until July 19th 2026 23:59 CDT (UTC -5)

    Key Dates:
    • CFP Opens: April 20th
    • CFP Closes: July 19th
    • Acceptances: Week of August 3rd (rolling basis)

    bsidestc.org/call-for-proposal

    #bsides #twincities #infosec #cybersecurity #hacking #Minneapolis #stpaul #security #securityconference #defcon #blackhat

  33. Howdy folks! We are excited to announce the Call For Presentations(CFP) for @bsidestc 2026!
    This year’s conference theme is “Building Resilience“.

    We would love to hear your submissions of how you or people in your community have been “building resilience”.

    Submissions will be open until July 19th 2026 23:59 CDT (UTC -5)

    Key Dates:
    • CFP Opens: April 20th
    • CFP Closes: July 19th
    • Acceptances: Week of August 3rd (rolling basis)

    bsidestc.org/call-for-proposal

    #bsides #twincities #infosec #cybersecurity #hacking #Minneapolis #stpaul #security #securityconference #defcon #blackhat

  34. THREAT MODEL: CYBERSECURITY 🧑‍💻
    for Apr. 28th, 2026
    by independent journalist @violetblue

    - #SANS trains #ICE now

    - How the US government evades data laws

    - #SamAltman apologizes for more #AI deaths

    - @lawfare argues that AI companies should have a duty to inform/protect (like therapists)

    - Claude AI deleted a whole company and said it knew what it did was wrong

    - More revenge #Microsoft 0-days are in the wild now

    - KitKat releases a Faraday cage

    - Violet's debrief after #BlackHat Asia 2026

    ...and much more.

    ✨THREAT MODEL is free to read -- please help keep it accessible to all by becoming a patron, even $1 a month makes a difference!✨

    patreon.com/posts/cybersecurit

    #ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver

  35. THREAT MODEL: CYBERSECURITY 🧑‍💻
    for Apr. 28th, 2026
    by independent journalist @violetblue

    - #SANS trains #ICE now

    - How the US government evades data laws

    - #SamAltman apologizes for more #AI deaths

    - @lawfare argues that AI companies should have a duty to inform/protect (like therapists)

    - Claude AI deleted a whole company and said it knew what it did was wrong

    - More revenge #Microsoft 0-days are in the wild now

    - KitKat releases a Faraday cage

    - Violet's debrief after #BlackHat Asia 2026

    ...and much more.

    ✨THREAT MODEL is free to read -- please help keep it accessible to all by becoming a patron, even $1 a month makes a difference!✨

    patreon.com/posts/cybersecurit

    #ThreatModel #ThreatModelCybersecurity #ThreatModelNewsletters #VioletBlue #infosec #cybersec #CovidIsNotOver

  36. So many Vegas visits, still so few for fun

    Landing at Dulles Wednesday evening closed out my 45th work trip to Las Vegas. That number alone is not something to take pride in and probably constitutes evidence of some character defect, but what’s even more disturbing is that since my first trip to Vegas in 1998–for CES, of course–I have still only been there three times for fun.

    This lifestyle long ago rendered me incapable of dealing with that city however normal people do. Instead, having the event formerly known as the Consumer Electronics Show dominate my experience of Vegas–I’m now at 28 trips there just for the Consumer Technology Association’s convention, still one of the most important events on my work calendar–keeps subjecting me to the place at its most expensive and least efficient.

    Even smaller-scale conferences like Black Hat (with six trips so far, it’s become about as essential as CES but easier to monetize) and the NAB Show (where I moderated a panel this week, with the National Association of Broadcasters covering airfare and lodging) leave me happier to take off from LAS than to land there.

    It’s not that I can’t enjoy a little time in the glitziest corner of Nevada. You can eat exceedingly well there, and Vegas service-industry folks are some of the best in the world. Blackjack can be fun, as long as you remember that you should at least try to lose slowly.

    If you drive far enough off the Strip, you can see some striking natural scenery. It took CES to remind me of that last bit, in the form of an outing in 2025 to Lake Mead to experience an electric sport boat.

    And there is some exceptional lodging in Vegas, although I’ve also stayed at some of the crummier ones. I started trying to inventory the hotels I’ve stayed at from the Strip up to the convention center (thus excluding off-strip properties like the Palms and a few places in downtown Las Vegas as well as two Airbnbs) and quickly realized they exceed the number of ballparks I’ve visited.

    From south to north: Mandalay Bay, Luxor, Excalibur, New York New York, MGM Grand, Monte Carlo (today Park MGM), Cosmopolitan, Hilton Grand Vacations, Bally’s (now the Horseshoe), Aladdin (now Planet Hollywood), Palms, Flamingo, Westin, Imperial Palace (the worst among the lot, fortunately now the Linq), Harrah’s, Mirage (demolished, being replaced by a Hard Rock Hotel in the shape of a guitar), Treasure Island, Wynn, Renaissance, Westgate, Fontainebleau (I’d rank that the best). 

    But however nice the hotel may have been, there’s no getting around how much I dislike the auto-centric, pedestrian-hostile nature of the streets outside. Unless you can start and end a conference commute on the monorail–this week’s trip, unlike most, allowed that–you will sit in traffic.

    The only improvements to Vegas transportation since 1998 have been on the margins: the monorail, Uber and Lyft liberating visitors from taxis that charge $3 extra for credit-card payment, the Vegas Loop’s tunnels, and the advent of autonomous vehicles from Zoox and, soon, Waymo.

    Even walking up and down the Strip is less efficient than it should be once you enter a building, since casino floors are where readable layouts and clear signage go to die.

    I grew up someplace where you had to drive everywhere; I never want to live like that again and don’t enjoy visiting places that seem intent on making that a perpetual default. I am much happier to have my travel destination be a more human-scaled city where it’s normal and enjoyable to get around by walking and transit; the contrast between CES in Vegas and MWC in Barcelona is glaring and entirely in Spain’s favor.

    I think of that every time one industry-analyst friend who moved from the Bay Area to a Vegas suburb tries to sell me on the same move. My response is always some version of “there is nothing you could say to make me ever want to do that.”

    And yet work keeps pulling me to Vegas anyway. This week’s trip was my third this year, with one more planned, and I already know next year will feature at least three. I should probably seek treatment for this condition at some point.

    #BlackHat #ces #hotels #las #LasVegas #LasVegasConventionCenter #LasVegasMonorail #LV #lvcc #NABShow #Nevada #pedestrian #rideHail #traffic #transit #Vegas #walkable
  37. So many Vegas visits, still so few for fun

    Landing at Dulles Wednesday evening closed out my 45th work trip to Las Vegas. That number alone is not something to take pride in and probably constitutes evidence of some character defect, but what’s even more disturbing is that since my first trip to Vegas in 1998–for CES, of course–I have still only been there three times for fun.

    This lifestyle long ago rendered me incapable of dealing with that city however normal people do. Instead, having the event formerly known as the Consumer Electronics Show dominate my experience of Vegas–I’m now at 28 trips there just for the Consumer Technology Association’s convention, still one of the most important events on my work calendar–keeps subjecting me to the place at its most expensive and least efficient.

    Even smaller-scale conferences like Black Hat (with six trips so far, it’s become about as essential as CES but easier to monetize) and the NAB Show (where I moderated a panel this week, with the National Association of Broadcasters covering airfare and lodging) leave me happier to take off from LAS than to land there.

    It’s not that I can’t enjoy a little time in the glitziest corner of Nevada. You can eat exceedingly well there, and Vegas service-industry folks are some of the best in the world. Blackjack can be fun, as long as you remember that you should at least try to lose slowly.

    If you drive far enough off the Strip, you can see some striking natural scenery. It took CES to remind me of that last bit, in the form of an outing in 2025 to Lake Mead to experience an electric sport boat.

    And there is some exceptional lodging in Vegas, although I’ve also stayed at some of the crummier ones. I started trying to inventory the hotels I’ve stayed at from the Strip up to the convention center (thus excluding off-strip properties like the Palms and a few places in downtown Las Vegas as well as two Airbnbs) and quickly realized they exceed the number of ballparks I’ve visited.

    From south to north: Mandalay Bay, Luxor, Excalibur, New York New York, MGM Grand, Monte Carlo (today Park MGM), Cosmopolitan, Hilton Grand Vacations, Bally’s (now the Horseshoe), Aladdin (now Planet Hollywood), Palms, Flamingo, Westin, Imperial Palace (the worst among the lot, fortunately now the Linq), Harrah’s, Mirage (demolished, being replaced by a Hard Rock Hotel in the shape of a guitar), Treasure Island, Wynn, Renaissance, Westgate, Fontainebleau (I’d rank that the best). 

    But however nice the hotel may have been, there’s no getting around how much I dislike the auto-centric, pedestrian-hostile nature of the streets outside. Unless you can start and end a conference commute on the monorail–this week’s trip, unlike most, allowed that–you will sit in traffic.

    The only improvements to Vegas transportation since 1998 have been on the margins: the monorail, Uber and Lyft liberating visitors from taxis that charge $3 extra for credit-card payment, the Vegas Loop’s tunnels, and the advent of autonomous vehicles from Zoox and, soon, Waymo.

    Even walking up and down the Strip is less efficient than it should be once you enter a building, since casino floors are where readable layouts and clear signage go to die.

    I grew up someplace where you had to drive everywhere; I never want to live like that again and don’t enjoy visiting places that seem intent on making that a perpetual default. I am much happier to have my travel destination be a more human-scaled city where it’s normal and enjoyable to get around by walking and transit; the contrast between CES in Vegas and MWC in Barcelona is glaring and entirely in Spain’s favor.

    I think of that every time one industry-analyst friend who moved from the Bay Area to a Vegas suburb tries to sell me on the same move. My response is always some version of “there is nothing you could say to make me ever want to do that.”

    And yet work keeps pulling me to Vegas anyway. This week’s trip was my third this year, with one more planned, and I already know next year will feature at least three. I should probably seek treatment for this condition at some point.

    #BlackHat #ces #hotels #las #LasVegas #LasVegasConventionCenter #LasVegasMonorail #LV #lvcc #NABShow #Nevada #pedestrian #rideHail #traffic #transit #Vegas #walkable
  38. Self reminder to not connect to their Wi-Fi, disable Wi-Fi, Bluetooth and AirDrop.
    Wallet already has RFID protection.
    😅
    #BlackHat

  39. Self reminder to not connect to their Wi-Fi, disable Wi-Fi, Bluetooth and AirDrop.
    Wallet already has RFID protection.
    😅
    #BlackHat

  40. Here are four of the ten looping Claude user quotes on anthropic.com homepage... Mind you, these are not dynamic, they chose these explicitly. Are they trying to represent user sentiment accurately or are they reading these very differently than I am?

    I went there after watching this talk: "Nicholas Carlini - Black-hat LLMs", from one of their engineers. There's definitely good work by talented and conscientious people that's going on there.

    I'm rewriting this post because I'm cynical of corporate motives but I also don't think that interpreting everything cynically is helpful. Even after the VC funding runs out (hopefully before we destroy the planet and society), these tools won't disappear especially for malicious actors. So if they're also building tooling to mitigate harm / defend against threat actors, do I dare to hope they're reading the quotes the same way I am? Or is it more of:

    I feel like I'm creating more dependency than knowledge.

    #AI #Anthropic #Claude #Blackhat #LLM #SoftwareSecurity #Cybersecurity #ThreatActor