RSS Alerts

Related Stories

  • Search for security
    With more than 30 000 web pages being infected every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves.
  • Microsoft were aware of Aurora security flaws
    Earlier reports that Microsoft knew about the critical Internet Explorer security flaws that forced it to release an out-of-band patch last Thursday evening have been confirmed - by Microsoft.
  • Twitter disables Flash feature after security researcher revelations
    Social networking service Twitter has temporarily disabled a Flash widget on its site after a Florida-based IT security researcher revealed the widget was subject to a widely known vulnerability in Adobe's Flash programming language.
  • Cyberterrorism: A look into the future
    Cyberterrorism might mean different things to different people, but one thing is certain – it needs to be taken incredibly seriously. What are we dealing with? How can we defend our nation? How will cyberterrorists of the future look to attack? The (ISC)2 US Government Advisory Board Executive Writers Bureau answers these questions
  • Comment: Back to information security basics
    As security companies add new technologies to meet the demands of both the evolving threat landscape and a compressed market, it is important they try not to forget about the core information security technologies that have been protecting businesses for decades

News

Black Hat briefings start on Thursday

14 April 2009

The organisers of the main Black Hat security conference - which takes place at the Moevenpick City Centre hotel in Amsterdam's Piet Heinkade this Thursday and Friday - have announced that presenters will reveal no less than six high profile vulnerabilities at the event.



In addition, the gameplan for this popular IT security event calls for presenters to also unveil 12 new tools to assist researchers in their activities.

Now in its ninth year, Black Hat EU 2009 has more than 500 IT security experts scheduled to attend, including public and private sector security professionals and underground hackers.

Unconfirmed sources suggest there will also be men in black suits wearing black sunglasses.

These people are unlikely to be as friendly as Will Smith and others in the Men in Black movie, but their activities on the spook front always make for interesting viewing at events of this type.

New tools and vulnerabilities due to be presented at Black Hat EU this year include:

  • All Your Packets Are Belong to Us - Attacking Backbone Technologies by Enno Rey and Daniel Mende - New Tool
  • Advanced SQL Injection Exploitation to Operating System Full Control by Bernardo Damele Assumpcao Guimaraes - New Vulnerability and New Tool
  • SAP Penetration Testing by Mariano Nunez Di Croce - New Vulnerability and New Tool
  • Fun and Games With Mac OS X and iPhone Payloads by Charlie Miller and incenzo Iozzo - New Tool
  • Hijacking Mobile Data Connections by Roberto Gassira and Roberto Piccirillo - New Vulnerability
  • Yes it is Too Wifi, and No, it's Not Inherently Secure by Rob Havelt -  New Tool
  • Open Office Security Design Weaknesses by Eric Filiol - New Vulnerability
  • WiSHMaster - Windows SHellcode MASTERy by Benjamin Caillat - New Tool
  • Alice in User-Land: Hijacking the Linux Kernel via /dev/mem by Anthony Lineberry - New Tool
  • Shuntaint: Emulation-based Security Testing for Formal Verification by Bruno Luiz - New Tool
  • Stack Smashing as of Today: A State-of-the-Art Overview on Buffer Overflow Protections on linux_x86_64 by Hagen Fritsch - New Vulnerability
  • Tactical Fingerprinting Using Metadata, Hidden Info and Lost Data by Chema Alonso and Enrique Rando - New Tool
  • VAASeling: VNC Attack Automation Suite by Rich Smith - New Tool
  • Masibty: a Web Application Firewall Based on Anomaly Detection by Stefano Zanero and Claudio Criscione - New Tool
  • Taming The Beast: Assess Kerberos-Protected Networks by Emmanuel Bouillon - New Vulnerability

Commenting on this year's event, Jeff Moss, the founder of the Black Hat conferences, says that, despite the fact that new vulnerabilities are worth so much on the open market these days, the conference will have numerous researchers willing to share their discoveries.

"We have our strongest field of submissions yet for a European event," he says.

If you're looking for somewhere to stay, you could do worse that check out the www.laterooms.com site, which has a wealth of discounted hotels costing from around 60 pounds a night for the duration of the event.

There is also a Webcast planned for 9pm UK time (4pm Eastern) this Thursday, details of which can be found here:

www.blackhat.com
 

 

This article is featured in:
Business Continuity and Disaster Recovery Compliance and Policy Internet and Network Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water