Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Black Hat USA
July 31 - August 5, 2021
Las Vegas, NV, USA
SecTor
November 4 - October 30, 2021
Toronto, ON, Canada
Black Hat Europe
November 8-11, 2021
Virtual Event
7/22/2014
01:00 PM
Black Hat Staff
Black Hat Staff
Event Updates
50%
50%

Black Hat USA 2014: Danger! High Bandwidth

Now that the world is basically one giant network, it's kind of mind-blowing to look back at computers from the days before they were so intimately intertwined. But the ubiquity of networking is also our Achilles' heel, which today's trio of Black Hat Briefings amply illustrate with their focus on Internet-based attacks.

Consumer premises equipment (CPE) like routers is nearly ubiquitous these days, but abuse of such devices is inordinately problematic, given the owner's subsequent difficulty in interfacing with the device to fix it, as well as the long-rotted, vulnerable code that exists in almost all such equipment. The result is an Internet-scale problem, almost like a public health crisis. Abuse of CPE Devices and Recommended Fixes will attempt to quantify the risk at work here -- think of all those midscale DSL connections just waiting to be harnessed for a DDoS -- and offer some recommendations on quelling this epidemic before it strikes.

RIPE NCC allocated its last IPv4 address space quite some time ago, so IPv6 is here, whether you decide to acknowledge it or not. Perhaps your ears will perk up when you come to Evasion of High-End IPS Devices in the Age of IPv6, in which Antonios Atlasis and Enno Rey will debut three novel techniques that allow attackers to exploit IPv6 and blind high-end commercial security devices. With these tricks, bad guys can launch any kind of attack, but the presenters will suggest potential mitigating measures, both short-term and long.

MultiPath TCP (MPTCP) is an extension to TCP that enables sessions to use multiple network endpoints and multiple network paths at the same time, and to change addresses in the middle of a connection. Though MPTCP works transparently over most network infrastructure, very few security and network management tools can correctly interpret MPTCP streams. Network security is changed: How do you secure traffic when you can't see it all and when the endpoint addresses change in the middle of a connection? Come to Multipath TCP: Breaking Today's Networks with Tomorrow's Protocols for a primer on MPTCP's assumption breaking, as well as tools and strategies for mitigating the risks of MPTCP-capable devices.

Regular registration ends July 26, which is really soon. Please visit Black Hat USA 2014's registration page to get started.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Enterprises Are Assessing Cybersecurity Risk in Today's Environment
The adoption of cloud services spurred by the COVID-19 pandemic has resulted in pressure on cyber-risk professionals to focus on vulnerabilities and new exposures that stem from pandemic-driven changes. Many cybersecurity pros expect fundamental, long-term changes to their organization's computing and data security due to the shift to more remote work and accelerated cloud adoption. Download this report from Dark Reading to learn more about their challenges and concerns.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-23863
PUBLISHED: 2022-01-28
Zoho ManageEngine Desktop Central before 10.1.2137.10 allows an authenticated user to change any user's login password.
CVE-2020-25905
PUBLISHED: 2022-01-28
An SQL Injection vulnerabilty exists in Sourcecodester Mobile Shop System in PHP MySQL 1.0 via the email parameter in (1) login.php or (2) LoginAsAdmin.php.
CVE-2022-23096
PUBLISHED: 2022-01-28
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation lacks a check for the presence of sufficient Header Data, leading to an out-of-bounds read.
CVE-2022-23097
PUBLISHED: 2022-01-28
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a strnlen call, leading to an out-of-bounds read.
CVE-2022-23098
PUBLISHED: 2022-01-28
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation has an infinite loop if no data is received.