Mastodawn

Wulfy—Speaker to the machines Apr 18, 2025

A cool #blackhat2024 talk on using Wi-Fi routers for population #surveillance

TLDR; Every person with an iPhone is a spy for #bigdata.

https://m.youtube.com/watch?v=hlbjUvkoyBA #wifi

Surveilling the Masses with Wi-Fi Positioning Systems

YouTube

Steffen Voß Mar 11, 2025

#CoPilot: Wenn einem Sicherheit unwichtig ist, kann man da tolle Sachen mit machen.

Michael Bargury auf der #BlackHat2024:
https://www.youtube.com/watch?v=FH6P288i2PE

#Security #KI #Microsoft

Living off Microsoft Copilot

YouTube

Corelight Dec 20, 2024

Corelight’s NOC team faced a unique challenge at Black Hat USA 2024—detecting SSHAMBLE, a new SSH scanner introduced by HD Moore. By tapping into existing logs and Zeek metadata, we identified the tool’s fingerprint in real-time.

What happened next?
✔️ Real-time detection.
✔️ Discovering threats using old logs. ✅✅
✔️ Zeek metadata making sense of encrypted traffic. 🔍

🔗 Head to the blog to learn more: https://corelight.com/blog/black-hat-usa-2024-noc-learnings?utm_source=mstdn&utm_medium=organic-social&utm_campaign=blog&utm_adgroup=blackhat2024noc&utm_content=SSI

#Cybersecurity #Zeek #ThreatDetection #BlackHat2024 #NOC

Black Hat USA 2024: Tales from the NOC | Corelight

Recapping our learnings from the Network Operations Center (NOC) at Black Hat USA 2024. Using historical network logs to detect threats during the Network Operations Center (NOC) at Black Hat USA 2024.

PentHertz Sep 26, 2024

🚀 Exciting News! We'll be presenting our RF Swift toolbox at #BlackHatEurope #Arsenal 2024! 📡⚡️
RF Swift is designed for RF Security assessments and HAM radio enthusiasts, offering flexibility and ease in deploying powerful RF tools. Stay tuned for more details! #CyberSecurity #HAMRadio #RFTools #BlackHat2024
🔗 https://www.blackhat.com/eu-24/arsenal/schedule/index.html#rf-swift-a-swifty-toolbox-for-all-wireless-assessments-41157

Black Hat

Benjamin Carr, Ph.D. 👨🏻‍💻🧬Aug 31, 2024

#Signal #Developer Explains Why Early Encrypted Messaging Tools Flopped
#MoxieMarlinspike criticized early #encryption software's user-unfriendly design at #BlackHat2024, admitting he and others initially failed to consider non-technical users' needs. Speaking with #BlackHat founder #JeffMoss, He said tools like #PrettyGoodPrivacy (#PGP) wrongly assumed users would adopt complex practices like keyservers and signing keys over dinner. "We were just wrong," Marlinspike said
https://www.pcmag.com/news/signal-developer-explains-why-early-encrypted-messaging-tools-flopped

Marcel SIneM(S)US Aug 16, 2024

Noch kein Patch: Sicherheitsforscher beraubt Windows sämtlicher Schutzfunktionen | Security https://www.heise.de/news/Noch-kein-Patch-Sicherheitsforscher-beraubt-Windows-saemtlicher-Schutzfunktionen-9834479.html #BlackHat2024 #BlackHat24 #BlackHat #DefCon #DefCon32 #DefCon2024

Noch kein Patch: Sicherheitsforscher beraubt Windows sämtlicher Schutzfunktionen

Stimmen die Voraussetzungen, können Angreifer Windows Update manipulieren, um beliebige Windows-Komponenten durch veraltete, angreifbare Vorgänger zu ersetzen.

heise online

Marcel SIneM(S)US Aug 12, 2024

Mit Domain-Based Authentication in unternehmensinterne Gruppen eindringen | iX Magazin https://www.heise.de/news/Mit-Domain-Based-Authentication-in-unternehmensinterne-Gruppen-eindringen-9830944.html #BlackHat #BlackHat2024 #BlackHat24

Mit Domain-Based Authentication in unternehmensinterne Gruppen eindringen

Was ergeben ein uraltes Protokoll, eine millionenfach benutzte Bibliothek und eine Authentifizierung per Maildomain? Zugang zum internen Github-Netzwerk.

heise online

Anonymous 🐈️🐾☕🍵🏴🇵🇸

Aug 12, 2024

A feature known as a Basic Service Set Identifier (BSSID) can be used to pinpoint and, in some cases, track user activity and location details, according to a research presented at #BHUSA. #BlackHat2024 #cybersecurity #infosec #ITsecurity https://www.scmagazine.com/news/black-hat-usa-wi-fi-tracking-flaw-puts-the-bs-in-bssid

Black Hat USA: Wi-Fi tracking flaw puts the ‘BS’ in BSSID

Geolocation services for a number of popular mobile hardware vendors can be used to perform widescale Wi-Fi network monitoring.

SC Media

O(SINT) Positive Aug 11, 2024

Orange Tsai's Black Hat USA 2024 research revealed architectural vulnerabilities in Apache HTTP Server, identifying three types of "Confusion Attacks" exploiting inconsistencies between Httpd modules.

These led to 9 new vulnerabilities and 20 exploitation techniques, including bypassing access controls and arbitrary file access outside the web root. The findings highlight challenges in balancing backward compatibility with security in long-standing open-source projects.

Akamai proactively collaborated with Tsai before his presentation, implementing preemptive protections against these vulnerabilities in their App & API Protector web application firewall service.

Orange Tsai's Research findings: https://blog.orange.tw/2024/08/confusion-attacks-en.html

Blackhat Presentation: https://i.blackhat.com/BH-US-24/Presentations/US24-Orange-Confusion-Attacks-Exploiting-Hidden-Semantic-Thursday.pdf

Akami acknowledgement and mitigations: https://www.akamai.com/blog/security-research/2024-august-apache-waf-proactive-collaboration-orange-tsai-devcore

#infosec #blackhat2024 #cybersecurity #apache