DEF CON 24 Roundup: 2016 Hacker Conference

A roundup of stories and updates from this year's DEF CON hacking convention in Las Vegas, which was held in Las Vegas, August 4-7.

Over 22,000 people attended this year's DEF CON. Cyber security experts and hackers alike came to the event to congregate with their peers and share information on the latest in the industry.
Here are a few highlights, in case you missed them:

Hackable BLE Door Locks

Anthony Rose, an electrical engineer, and Ben Ramsey, a professional information security expert, presented "Picking Bluetooth Low Energy Locks from a Quarter Mile Away".

The duo investigated 16 different BLE lock products and found issues with the security of 12 of them. That is to say, they picked 12 different BLE locks—from nearly half a mile away and using minimal equipment.


On top of proving the vulnerabilities of these locking mechanisms, the presentation also introduced open source hacking tools that could be used to hack both vanilla Bluetooth and BLE locks.
Before you become too outraged at Rose and Ramsey's goals in this presentation, you should be aware that they contacted 14 of the 16 companies that produced the locks regarding the vulnerabilities they found. According to the hackers, these companies declined to change their systems, even when faced with proof that they were easily breached.


Example of a BLE lock. Image courtesy of August (one of the four locks that Rose and Ramsey could not hack).

Other Village Talks (broken up into multiple "Village" segments, e.g., "IoT") from this year's event included updates on the FCC's cybersecurity activities, automated dorking, lessons from last year's Ashley Madison hack, cryptography in Python, reverse engineering RF drones, and introductions to various hacking tools and systems.

"Mayhem" Supercomputer Competes with Humans

For the unfamiliar, the Cyber Grand Challenge (or CGC) is a yearly competition hosted at DEF CON by DARPA, first hosted in 2013. Of course, "Capture the Flag" means something different to hackers than it does to most people. In hacking, each team is given a network that is full of weaknesses. They must simultaneously patch their network to defend it from attack while also developing breaches for the opposing team's network.
In addition, some games also include "Jeopardy-style" rules, where the teams must solve a series of puzzle-like tasks—each unlocking the next—to earn points.
Mayhem is a supercomputer developed by the Pittsburgh-based team, ForAllSecure.


Mayhem. Image courtesy of ForAllSecure.

In this year's CGC, Mayhem defeated its machine opponents. Part of the team's reward for this victory (along with $2 million) was an invitation to pit Mayhem against humans at DEF CON's annual Capture the Flag competition.

On August 5th-7th, Mayhem went up against some of the best competitive hacking teams in the country. The result? Mayhem got 15th place out of 15 entrants.
While supercomputers still have a long way to go before they can defeat human opponents, Mayhem does give life to the idea that competent, self-patching security systems are on the horizon.

r00tz Asylum

Another yearly event held within DEF CON is the r00tz Asylum. This is a group of rooms dedicated to teaching hacking, hardware engineering, encryption, etc., but focusing on a very particular demographic: kids.


Image courtesy of r00tz Asylum.

According to its website, the Asylum typically caters to kids between the ages 8 and 16.
Beyond giving kids the tools and skills to do their own hacking, r00tz also educates them about the role cybersecurity plays in their lives and in the world at large.

Another point worth bringing up is that r00tz has an explicit goal of teaching hacking skills as a tool "for good". One of last year's talks, for example, was titled "White Hat Hacking" wherein "white hat" refers to ethical or socially responsible activity.

Along these lines, the program has involved the kids in "bug bounties" wherein companies pay for the discovery and reportage of weaknesses in their security systems.

As a note, this year was Apple's first taking part in the "bug bounty" industry:


Bonus!

As usual, DEF CON 2016 had a slew of workshops on the convention floor.
As an example, here's a demonstration of an attendee hacking a Raspberry Pi using a Black Magic Probe:



Previous
Next Post »
My photo

Hi, I`m Sostenes, Electrical Technician and PLC`S Programmer.
Everyday I`m exploring the world of Electrical to find better solution for Automation. I believe everyday can become a Electrician with the right learning materials.
My goal with BLOG is to help you learn Electrical.
Related Posts Plugin for WordPress, Blogger...

Label

KITAIFA NEWS KIMATAIFA MICHEZO BURUDANI SIASA TECHNICAL ARTICLES f HAPA KAZI TU. LEKULE TV EDITORIALS ARTICLES DC DIGITAL ROBOTICS SEMICONDUCTORS MAKALA GENERATOR GALLERY AC EXPERIMENTS MANUFACTURING-ENGINEERING MAGAZETI REFERENCE IOT FUNDAMENTAL OF ELECTRICITY ELECTRONICS ELECTRICAL ENGINEER MEASUREMENT VIDEO ZANZIBAR YETU TRANSDUCER & SENSOR MITINDO ARDUINO RENEWABLE ENERGY AUTOMOBILE SYNCHRONOUS GENERATOR ELECTRICAL DISTRIBUTION CABLES DIGITAL ELECTRONICS AUTOMOTIVE PROTECTION SOLAR TEARDOWN DIODE AND CIRCUITS BASIC ELECTRICAL ELECTRONICS MOTOR SWITCHES CIRCUIT BREAKERS MICROCONTROLLER CIRCUITS THEORY PANEL BUILDING ELECTRONICS DEVICES MIRACLES SWITCHGEAR ANALOG MOBILE DEVICES CAMERA TECHNOLOGY GENERATION WEARABLES BATTERIES COMMUNICATION FREE CIRCUITS INDUSTRIAL AUTOMATION SPECIAL MACHINES ELECTRICAL SAFETY ENERGY EFFIDIENCY-BUILDING DRONE NUCLEAR ENERGY CONTROL SYSTEM FILTER`S SMATRPHONE BIOGAS POWER TANZIA BELT CONVEYOR MATERIAL HANDLING RELAY ELECTRICAL INSTRUMENTS PLC`S TRANSFORMER AC CIRCUITS CIRCUIT SCHEMATIC SYMBOLS DDISCRETE SEMICONDUCTOR CIRCUITS WIND POWER C.B DEVICES DC CIRCUITS DIODES AND RECTIFIERS FUSE SPECIAL TRANSFORMER THERMAL POWER PLANT cartoon CELL CHEMISTRY EARTHING SYSTEM ELECTRIC LAMP ENERGY SOURCE FUNDAMENTAL OF ELECTRICITY 2 BIPOLAR JUNCTION TRANSISTOR 555 TIMER CIRCUITS AUTOCAD C PROGRAMMING HYDRO POWER LOGIC GATES OPERATIONAL AMPLIFIER`S SOLID-STATE DEVICE THEORRY DEFECE & MILITARY FLUORESCENT LAMP HOME AUTOMATION INDUSTRIAL ROBOTICS ANDROID COMPUTER ELECTRICAL DRIVES GROUNDING SYSTEM BLUETOOTH CALCULUS REFERENCE DC METERING CIRCUITS DC NETWORK ANALYSIS ELECTRICAL SAFETY TIPS ELECTRICIAN SCHOOL ELECTRON TUBES FUNDAMENTAL OF ELECTRICITY 1 INDUCTION MACHINES INSULATIONS ALGEBRA REFERENCE HMI[Human Interface Machines] INDUCTION MOTOR KARNAUGH MAPPING USEUL EQUIATIONS AND CONVERSION FACTOR ANALOG INTEGRATED CIRCUITS BASIC CONCEPTS AND TEST EQUIPMENTS DIGITAL COMMUNICATION DIGITAL-ANALOG CONVERSION ELECTRICAL SOFTWARE GAS TURBINE ILLUMINATION OHM`S LAW POWER ELECTRONICS THYRISTOR USB AUDIO BOOLEAN ALGEBRA DIGITAL INTEGRATED CIRCUITS FUNDAMENTAL OF ELECTRICITY 3 PHYSICS OF CONDUCTORS AND INSULATORS SPECIAL MOTOR STEAM POWER PLANTS TESTING TRANSMISION LINE C-BISCUIT CAPACITORS COMBINATION LOGIC FUNCTION COMPLEX NUMBERS ELECTRICAL LAWS HMI[HUMANI INTERFACE MACHINES INVERTER LADDER DIAGRAM MULTIVIBRATORS RC AND L/R TIME CONSTANTS SCADA SERIES AND PARALLEL CIRCUITS USING THE SPICE CIRCUIT SIMULATION PROGRAM AMPLIFIERS AND ACTIVE DEVICES BASIC CONCEPTS OF ELECTRICITY CONDUCTOR AND INSULATORS TABLES CONDUITS FITTING AND SUPPORTS CONTROL MOTION ELECTRICAL INSTRUMENTATION SIGNALS ELECTRICAL TOOLS INDUCTORS LiDAR MAGNETISM AND ELECTROMAGNETISM PLYPHASE AC CIRCUITS RECLOSER SAFE LIVING WITH GAS AND LPG SAFETY CLOTHING STEPPER MOTOR SYNCHRONOUS MOTOR AC METRING CIRCUITS APPS & SOFTWARE BASIC AC THEORY BECOME AN ELECTRICIAN BINARY ARITHMETIC BUSHING DIGITAL STORAGE MEMROY ELECTRICIAN JOBS HEAT ENGINES HOME THEATER INPECTIONS LIGHT SABER MOSFET NUMERATION SYSTEM POWER FACTORS REACTANCE AND IMPEDANCE INDUCTIVE RESONANCE SCIENTIFIC NOTATION AND METRIC PREFIXES SULFURIC ACID TROUBLESHOOTING TROUBLESHOOTING-THEORY & PRACTICE 12C BUS APPLE BATTERIES AND POWER SYSTEMS ELECTROMECHANICAL RELAYS ENERGY EFFICIENCY-LIGHT INDUSTRIAL SAFETY EQUIPMENTS MEGGER MXED-FREQUENCY AC SIGNALS PRINCIPLE OF DIGITAL COMPUTING QUESTIONS REACTANCE AND IMPEDANCE-CAPATIVE RECTIFIER AND CONVERTERS SEQUENTIAL CIRCUITS SERRIES-PARALLEL COMBINATION CIRCUITS SHIFT REGISTERS BUILDING SERVICES COMPRESSOR CRANES DC MOTOR DRIVES DIVIDER CIRCUIT AND KIRCHHOFF`S LAW ELECTRICAL DISTRIBUTION EQUIPMENTS 1 ELECTRICAL DISTRIBUTION EQUIPMENTS B ELECTRICAL TOOL KIT ELECTRICIAN JOB DESCRIPTION LAPTOP THERMOCOUPLE TRIGONOMENTRY REFERENCE UART WIRELESS BIOMASS CONTACTOR ELECTRIC ILLUMINATION ELECTRICAL SAFETY TRAINING FILTER DESIGN HARDWARE INDUSTRIAL DRIVES JUNCTION FIELD-EFFECT TRANSISTORS NASA NUCLEAR POWER SCIENCE VALVE WWE oscilloscope 3D TECHNOLOGIES COLOR CODES ELECTRIC TRACTION FEATURED FLEXIBLE ELECTRONICS FLUKE GEARMOTORS INTRODUCTION LASSER MATERIAL PID PUMP SEAL ELECTRICIAN CAREER ELECTRICITY SUPPLY AND DISTRIBUTION MUSIC NEUTRAL PERIODIC TABLES OF THE ELEMENTS POLYPHASE AC CIRCUITS PROJECTS REATORS SATELLITE STAR DELTA VIBRATION WATERPROOF