Database Security
Authentication
Privacy
Compliance
Identity & Access Management
Security Monitoring
Advanced Threats
Insider Threats
Vulnerability Management
Vulnerabilities / Threats
8/31/2015
07:40 PM
Kelly Jackson Higgins
Connect Directly
Google+
Twitter
RSS
E-Mail
0 comments
Comment Now
50%
50%

Sights & Sounds Of Black Hat USA And DEF CON

Some hackers call the week of Black Hat USA and DEF CON 'security summer camp' -- a look at some of the highlights of the two shows.
Previous
1 of 10
Next

Photo Credit: Pixabay
Photo Credit: Pixabay

Rifles, Jeeps, smartphones, drones, and even toys, fell to white-hat hackers earlier this month in Las Vegas, when Black Hat USA and DEF CON came to Sin City, and security researchers demonstrated how they poked security holes in Internet of Things things, as well as corporate devices and business software. 

Black Hat and DEF CON are always colorful--even by Vegas standards--but this year the hacking demonstrations, debates, and discussions, in some instances were a bit more unnerving than in years' past (who knew consumer rifles were hackable?).  Even so, it's the hacker culture and mindset that make these two events unlike any show in Vegas.

In case you didn't make it Black Hat and/or DEF CON, or you just miss them (or Vegas), here's a look at some of the sights and sounds from these shows earlier this month.

 

 

Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Previous
1 of 10
Next
Comment  | 
Print  | 
More Insights
Webcasts
More Webcasts
White Papers
More White Papers
Reports
More Reports
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Five Emerging Security Threats - And What You Can Learn From Them
At Black Hat USA, researchers unveiled some nasty vulnerabilities. Is your organization ready?
Flash Poll
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
Dark Reading editors are live at Black Hat 2016. In this special episode of Dark Reading Radio, join executive editor Kelly Jackson Higgins and senior editor Sara Peters as they bring you conversations with speakers from the Black Hat 2016 conference.