#blackhat2023 — Public Fediverse posts

If you went to anything in #lasvrgas #vegas during #HackerSummerCamp like @DianaInitiative, @BSidesLV #bsideslv, #bhusa #blackhat2023, #squadcon...

And especially @defcon for #Defcon31, please get #COVID19 tested!

If you got a positive result, please fill out this forum by @dcskytalks:

https://skytalks.info/summer-camp-2023-covid-dashboard/

#CovidIsNotOver

#BHUSA and #usesec23 have been a blast! Check out our work "Cookie Crumbles: Breaking and Fixing Web Session Integrity"!

🍪🧑‍🍳🍪

Paper https://www.usenix.org/conference/usenixsecurity23/presentation/squarcina
Slides https://minimalblue.com/data/papers/BHUSA23_cookie_crumbles-slides.pdf
Artifacts https://github.com/SecPriv/cookiecrumbles

With Pedro Adão, Lorenzo Veronese, and Matteo Maffei

#websecurity #webdev #usesec2023 #blackhat #blackhat2023 #cookies

SAFETY & PRIVACY ANTI-STALKING FOR #HACKERSUMMERCAMP

If a person(s) single or in an org are pressuring you for a phone number to contact, give them this to placate them so you can properly escape:

248-434-5508

Then contact con staff/goons/authorities.

#DEFCON31 @defcon @defconparties @defconparrot @defcon_parties @Defcon_Music #BHUSA #blackhatusa #blackhat2023 #squadcon

Great #keynote #BHUSA2023 by @Azeria

Key takeaways:

• Chatgpt was hastily released despite knowing its risks.
• #Google was rightly delaying its model’s release but then came #openai
• #AI usecases and capabilities are exploding
• AI Risks are serious
• Phishing will expand to phishing AI agents.
• What we need as industry?
• Forensic AI tooling to analyze AI actions
• AI wont replace sec pros. It has introduced many risks related to LLMs that we need #infosec pros to understand and analyse.
• Have #IAM solutions for AI agents and for internal and business data used by LLMs
• Tech evolving without security isnt new to us, similarly we know how to study new systems and is a chance for security pros to identify new opportunities and foster new solutions
• AI village at #defcon #bhusa has 100+ talks.

#blackhat #BlackHat2023 #sectoot #infosec

REMINDER! TODAY @ 5:30pm EST, join us LIVE discussing #lasvegas #vegas & #hackersummercamp! Tips & highlights for #defcon31, #bhusa, #squadcon, #ringzero, #BSidesLV, #DianaInitiative, #cccamp23 & more!

Watch #Twitch, #YouTube, #Odysee & #Kick: https://linktr.ee/defcon201

@defcon @dcparrot @dcfurs @DCGVR @Defcon_Music @defconparties @dcshenanigans @BSidesLV @DianaInitiative @ringzer0 @blackgirlshack @CCC @c3stoc @c3cert #BlackHat #blackhat2023 #blackhatusa

Don't forget, this time next week in fabulous Las Vegas you'll be able to meet Team ZeroTier at both BlackHat USA 2023 and DEF CON 31.

Come by our booth in Start-Up City at Black Hat for some ZeroTier swag. Or, stop by the DEF CON Packet Hacking Village. Be sure to say hello to the team when you see us!

#blackhat2023 #blackhatusa #BH23 #defcon #defcon31 #zerotier

Hey fellow #cybersecurity and #appsec professionals, hobbiests, hackers and tinkerers. I'm headed to Vegas for #BlackHat2023 and #Defcon31 for the first time in 13 years. It seems like ages and mostly because it's going to be the first time participating as a corporate AppSec lackey and not a vendor consultant, a research analyst, speaker or working for the conferences managing press like in some of the early days*.

Looking forward to seeing some of the (now older) familiar faces and meeting so many of the new folks I've only had the pleasure of making acquaintances on infosec social media from afar, and getting caught up as well as just breathing a bit while getting some training and a certificate.

Come say hi if you see me! #McIntyre

*#Goon

We are stoked to announce our return to #BlackHat 2023 with our live-fire training taught by @eric_capuano and Matt Bromiley!

Sign up now: Adversary Detection & Incident Response - Network Defense Range Operations
#BHUSA #BH23 #BlackHat2023

REALLY excited to finally announce that our "Fundamentals of Cyber Investigations and Human Intelligence" class will be part of this year's trainings at #BlackHat Asia! 🎩

@OSINTgeek and I will deliver a 2-day training on conducting in-depth online investigations by combining the disciplines of open-source intelligence ( #OSINT ), social media intelligence ( #SOCMINT ), and human intelligence ( #HUMINT ).

We created this class with the vision to help investigators and intelligence analysts adapt to the ever-evolving complexities of online investigations. We wanted them to develop a good skill set and utilize the competitive advantage those three intelligence disciplines bring to an investigation, when combined. We have been able to do that, through our previous open, and in-house classes.

In the meantime, we started observing an increased interest from threat hunters, threat intelligence teams, security researchers, and other related professionals that came to attend with a different motive. They wanted to understand how threat actors utilize open-source intelligence along with human intelligence in their attack kill chains. They wanted to be able to conduct a more informed analysis, increase the accuracy of their reports, and inform their security strategy.

This year, we are once again offering this class as an open class, in Black Hat Asia 2023!! 🥹🥹

#intelligence #training #cybersecurity #opensourceintelligence #humanintelligence #intelligenceanalysis #threatintelligence #threatintel #socialengineering #cyber #cybercrime @[email protected] @[email protected] #blackhat2023 #blackhatasia #bhasia #fraudinvestigation #lawenforcementtraining #lawenforcement #threatanalysis #investigations

What's the over/under on security conference CFPs this year whose subject is using ChatGPT to fool IT/security professionals (fake social accounts, blog entries, phishing, etc...) in some half ass Turing tests?

(Yes, I've seen Bob Gourley's early example where ChatGPT is used to create a CFP entry on the threat posted by ChatGPT.)

#RSA2023 #BlackHat2023