BHUSA: All good things must come to an end
We did it! BlackHat has ended. As soon as the show doors shut at 4 PM yesterday the whole exhibition floor burst into a round of applause, hi-fives, and woot-woots! And then the arsenal of trucks rolled out to start taking things down – Vegas doesn't waste any time.
This year’s convention was epic. The hustle was real. Here’s a peek at what it was like to be there in person.
One thing's for sure, there was no drought for ideas, innovation, and technological advancement. Though we’re sad to say goodbye to all our Black Hat friends for the year, we’re energized to return to our work with new insights and connections. We’re in great company helping to protect IT environments and working to make life easier for ITOps and SecOps teams.
DEF CON 2022
If you’re hanging on through the weekend, don’t miss the oldest, largest hacker convention around.
DEF CON 30 kicks off today, August 12, and lasts through August 14 at Caesars Forum, Flamingo, Linq, and Harrah's in Las Vegas. And the event line-up is fierce:
The Classic Arcade Party. (PS Keith Myers is DJing.)
The Girls Hack Village 90’s House Party where you can go back to the era of slow jams and house party mixtapes. Kris Kross will make you jump, jump.
The Queercon Mixer where the lgbtqia+ community in InfoSec can party together and have a good time
The Blueteam Village Pool Party for free tacos, sliders, and other goodies.
The first ever Night of the Ninjas Costume Contest which will feature modern taiko drumming and fresh artistry from the TAIKOPROJECT.
The 4X5K @ DC30 where you can go for a run with other fast friends.
We look forward to joining you all again in 2023.
August 11, 2022: BHUSA Day 2
Black Hat USA is underway and the vibe is awesome. After 25 years, it’s incredible to see how the cybersecurity industry’s most impactful gathering has grown.
This morning, Dark Reading published an in-depth retrospective celebrating how far we’ve come since the inaugural conference in 1997. It’s a great read.
To call out some of the highlights, the article mentions that back in the day “tech companies didn't understand hackers very well and didn't take them seriously.” However, DEF CON’s founder, Jeff Moss, hoped to open a window into the minds of these creative geniuses. That’s Black Hat’s humble origin story.
Even at that first conference, attendees heard from the industry’s most inspiring speakers – folks who were on the cutting edge. Mudge educated the crowd on secure coding best practices, Bruce Schneier broke down cryptography emphasizing why it’s more complicated than it appears, and Dominique Brezinski discussed attacks against Windows New Technology networks.
Black Hat’s first-ever keynote speaker was techno-philosopher Richard Thieme. He told that energized group of hackers, “You’re going to be the thought leaders in the 21st century."
At the time, his prediction may have seemed implausible – you couldn’t major in cybersecurity. But, hindsight is 20/20. The tech revolution hit and it certainly changed all our lives in ways that still surprise us.
Work hard, dance hard: Rapid7 shook us all night long
According to our resident Life of the Party, Laura “Party” Partyka (Automox Senior Manager, Account Based Marketing) Black Hat has been super enjoyable – and super busy. Booth #2921 has been bumpin’ with interested people asking questions about automated patch management and getting their hands on a free trial of Automox.
To celebrate the day’s hard work, Laura and those manning the booth put on their best duds and headed to the Rapid7 party. She said, “The Rapid7 party was off the hook last night. We all had a great time at Area 15 with lots of fun dancing and crazy lawn games.
Apparently, Black Hat attendees are funky dancers. Lots of people showcased epic moves on the dance floor. Even a few breakdancers got their groove on. Let’s hope there’s more fun to be had tonight.
Join Automox for two Dark Reading panels today
Building a Better Vulnerability Management Strategy
Thursday, August 11 | 10:20 am – 11:20 am (Oceanside E) - Do you know how to triage and prioritize the patching process in your organization? How do you monitor and identify potential threats to your applications?
In this Dark Reading panel discussion, application security experts offer advice and insight on how to stay ahead of attackers by keeping your applications and software programs updated and secure.
Securing Your Hybrid Cloud Infrastructure
Thursday, August 11 | 11:30 am – 12:20 pm (Oceanside E)
How do you protect your now multi-cloud, hybrid corporate network? What are some of the emerging technologies and cloud patch management tools to consider?
Join Dark Reading editors and industry experts for a panel discussion that offers insights and advice on how to manage the security of this more complex and dispersed network environment.
Tune in for more Black Hat news tomorrow
There's one more day of fun and learning to be had at Black Hat. Look to tomorrow's update for the wrap-up. Until then, stay safe and have fun at the party.
August 10, 2022: BHUSA Day 1
Today’s the day. Black Hat USA 2022 is underway at the Mandalay Bay Convention Center in Las Vegas and Automox is here! Word on the street is it’s bigger and better than ever. If the line to get into the event is any indication, the convention’s attracted more cybersecurity pros than ever before.
Come scan your badge at Booth #2921 and grab awesome swag like a free FOR [FIX] SAKE t-shirt or our radical stickers featuring Otto (our robot!).
We’re excited to join the cybersecurity community and some of our favorite integration partners – like Rapid7 and Crowdstrike – for networking and top-notch learning opportunities led by security’s biggest names.
We can’t wait to talk shop with our infosec peers, share how to automate patching and remediate thousands of vulnerabilities in minutes, and gain new insights from other Black Hat innovators.
This morning, Founding Partner of the Krebs Stamos Group, Chris Krebs asked the infosec community Where We Go from Here? in his keynote presentation.
For twenty-five years, the InfoSec community has gathered in the desert to chip away at underlying insecurities in the technologies we use every day with new vulnerability research and adversary insights. As we look forward to the next twenty-five years, we have to ask ourselves: are we on the right track?
Krebs worked through today’s risk trends and what they mean for tomorrow’s network defenders. He paid special attention to how we can build a safer, more resilient technological future where systems and infrastructure behave more like escalators: when they break, they turn into stairs.
In his keynote, Krebs defined ransomware as, “The event where an attacker monetizes a vulnerability or misconfiguration.” He then dove into the continued rise of commodity ransomware attacks and explained that we as an industry have glorified advanced actors – while it’s really the commodity actors we should worry about.
Tomorrow, we’re looking forward to investigative journalist Kim Zetter’s keynote presentation:
Everything has changed, nothing has changed
Thursday, August 11 | 9:00 am-10:00 am (Oceanside – Level 2) - When Stuxnet was discovered in 2010, it shone a light on vulnerabilities in critical infrastructure that few had noticed before. The security community, largely focused on IT networks, had its eyes opened to a vast sector it had previously ignored — the operational networks and industrial control systems that manage pipelines, railways, the electric grid, water treatment plants, manufacturing, and so many other pivotal industries. Cybersecurity suddenly became inextricably linked to national security. But it shouldn’t have been a surprise to anyone.
Likewise, that same year, the Aurora campaign that hit Google, RSA, and dozens of other companies, launched a new era of massive espionage and supply-chain hacks. Threat actors became more sophisticated, and their operations more consequential — witness the OPM hack, DNC breach, NotPetya, and SolarWinds. But the growing sophistication of operations shouldn’t have been a surprise to anyone.
A lot has changed in cybersecurity in the years since BlackHat was founded and Stuxnet was discovered, and a lot of advancements have been made. Today, new signals portend what’s to come. We see them in Ukraine, Iran, and the U.S.
Join us for more Black Hat commentary tomorrow
Stay tuned for more fun and exciting Black Hat content including takeaways from the Building a Better Vulnerability Management Strategy panel, Securing Your Hybrid Cloud Infrastructure panel, and more.
July 25, 2022: Black Hat excitement
Viva Las Vegas!
Black Hat USA 2022 is nearly here and you can bet Automox will be on the strip, ready to mingle. As we pack our bags and shine our cloud patch management tool to share with you at Mandalay Bay, we’ve got lots we’re looking forward to.
This is Black Hat USA’s 25th year in action. Whether you’re attending in person or logging in virtually, you’re in for some inspiring and educational fun.
For 2022, the team at Black Hat has put together some incredible trainings and briefings led by experts from around the world. These sessions will take place from August 6-11 and offer you the chance to build your technical skillset, whether you’re an offensive or defensive hacker.
Of course, we also have our eyes on the networking parties, including Wednesday’s Smoothie Social and Thursday’s Mimosa Bar. But we’re most excited to announce that our own Director of Security Chris Hass will be joining a few expert panels for two discussions organized by Dark Reading:
Building a Better Vulnerability Management Strategy
Panelists:
Jai Vijayan | Contributing Writer, Dark Reading
Roselle Safran | CEO and Founder, KeyCaliber
Andrew Hay | CISO, Lares
Chris Hass | Director of Security, Automox
Thursday, August 11 | 10:20 am – 11:20 am (Oceanside E) - Software and network technology vendors regularly issue patches for security flaws, but recent data shows that many organizations are slow to apply those fixes and remediations, leaving many of their apps and systems at risk of attack.
Do you know how to triage and prioritize the patching process in your organization? How do you monitor and identify potential threats to your applications?
In this Dark Reading panel discussion, application security experts offer advice and insight on how to stay ahead of attackers by keeping your applications and software programs updated and secure.
Securing Your Hybrid Cloud Infrastructure
Panelists:
Fahmida Rashid | Managing Editor for Features, Dark Reading
Wendy Nather | Head of Advisory CISOs, Cisco
Melinda Marks | Senior Analyst, ESG
Chris Hass | Director of Security, Automox
Thursday, August 11 | 11:30 am – 12:20 pm (Oceanside E) - The pandemic accelerated the move to cloud for many organizations already struggling to get a handle on securing their own on-premises networks.
How do you protect your now multi-cloud, hybrid corporate network? What are some of the emerging technologies and cloud patch management tools to consider?
Join Dark Reading editors and industry experts for a panel discussion that offers insights and advice on how to manage the security of this more complex and dispersed network environment. You'll get insight on the latest tools and technologies and best practices for this new network reality.
Start your free trial now.
Get started with Automox in no time.
