Dive into the buzzing atmosphere of Hacker Summer Camp in Las Vegas, featuring key insights from the DEF CON and BSides conferences. Discover the 'Undisruptible 27' initiative aimed at bolstering critical infrastructure. Uncover the balance of security and privacy in NFL stadiums with facial recognition tech. Explore the implications of a patent for car surveillance and legal rulings on smartphone searches. Plus, get practical tips on managing your online privacy and personal data in this digital age!
The DEF CON conference this year fostered invaluable networking opportunities among cybersecurity professionals, highlighting the importance of collaboration in the field.
The controversial decision by Resorts World Las Vegas to inspect hotel rooms during DEF CON raised significant privacy concerns regarding increased surveillance measures in response to cybersecurity threats.
The implementation of facial recognition technology by the NFL at stadiums underscores a critical debate between enhancing security and protecting individual privacy rights in public spaces.
Deep dives
Experiencing DEF CON and Networking Opportunities
The host shares insights from attending the DEF CON conference in Las Vegas, highlighting the event's dynamic environment, intense heat, and unique location. This year's DEF CON took place in a massive convention center, allowing for easier navigation without the distractions of smoky casinos. The host emphasizes the value of networking, recalling meaningful interactions with patrons and fellow attendees, noting that socializing plays a significant role during such events. Engaging with others not only enriches the conference experience but also fosters collaboration and connection within the cybersecurity community.
Ransomware Concerns at Resorts World Las Vegas
A focus on cybersecurity emerged when Resorts World Las Vegas announced daily inspections of hotel rooms during DEF CON due to recent ransomware incidents targeting local casinos. This decision sparked controversy among conference attendees, prompting discussions on the effectiveness and privacy implications of such inspections. Many expressed skepticism over how visual room inspections would identify potential hackers and raised concerns about privacy violations. This resulted in a larger conversation about the growing surveillance measures taken by hotels amid heightened cybersecurity threats.
Vulnerabilities in Browsers and Safari Update
A significant security vulnerability affecting web browsers, particularly Safari, was discussed, involving a bug that exploits how browsers handle network requests to access sensitive local services. This flaw, which researchers labeled as a 'zero-day' vulnerability, has been acknowledged as a longstanding issue, with proposed fixes under development by major browser developers. Apple's WebKit team has moved to block access to the problematic address, indicating an urgent response to the identified threat. The matter emphasizes the persistent need for vigilance regarding browser security and the importance of timely updates for users.
The Rise of Facial Recognition Technology in the NFL
The NFL has begun implementing facial recognition technology across all its stadiums to enhance security and streamline entry processes. This technology enables speedy verification for credentialed personnel, significantly reducing wait times at security checkpoints. However, privacy advocates have raised concerns about the implications of such surveillance practices, especially regarding racial and gender discrimination in identification accuracy. The growing trend of facial authentication in sports venues reflects broader conversations about the balance between security measures and individual privacy rights.
Debates Over Digital Privacy and Consent
Recent discussions revolved around the collection and sharing of sensitive data by auto manufacturers and other industries, highlighting concerns over privacy and data consent. Incidents involving General Motors and their handling of user data showcased a clear need for stronger consumer protections against unauthorized data sales. Legislative scrutiny has emerged, with calls for investigations into how automakers collect, use, and share driver behavior data. Assessing the ethical implications of shared data emphasizes the importance of transparency and consumer rights in an increasingly digital landscape.
It's time once again for cybersecurity professionals to make the pilgrimage to the scorching desert of Las Vegas, Nevada for a week of tech conferences that we lovingly refer to as Hacker Summer Camp. Today I'll bring you my on-the-ground reporting from BSides and DEF CON. I'll also bring you part 2 of my series on Open Source Intelligence (OSINT) and how to purge your personal data from the web.
In the news this week: Vegas hotels search hacker's rooms; Apple and others fix old but important browser bug; NFL rolls out more facial recognition at stadiums; Ford looks to patent car surveillance tech; automakers sold your data to brokers for pennies; border agents can no longer search your smartphone without a warrant; judge rules that Google is a monopoly.
Article Links
[404media.co] Hotel to Search Rooms During DEF CON Hacking Conference https://www.404media.co/hotel-to-search-rooms-during-def-con-hacking-conference/
[AppleInsider] Apple has closed an ancient macOS Safari security hole https://appleinsider.com/articles/24/08/07/apple-has-closed-an-ancient-macos-safari-security-hole
[therecord.media] NFL to roll out facial authentication software league-wide https://therecord.media/nfl-to-roll-out-facial-authentication-league-wide
[therecord.media] Ford wants patent for tech allowing cars to surveil and report speeding drivers https://therecord.media/ford-seeks-patent-cars-surveil-speeders-report-to-police
[The New York Times] Automakers Sold Driver Data for Pennies, Senators Say https://www.nytimes.com/2024/07/26/technology/driver-data-sold-for-pennies.html
[9to5Mac] Border agents cannot search smartphones without a warrant, rules federal court https://9to5mac.com/2024/07/29/cannot-search-smartphones-without-a-warrant/
[AppleInsider] Judge rules Google is a search and advertising monopoly https://appleinsider.com/articles/24/08/05/judge-rules-that-google-is-a-search-and-advertising-monopoly
Tip of the Week: OSINT Remediation https://firewallsdontstopdragons.com/osint-remediation/
Further Info
BSides Las Vegas: https://bsideslv.org/
DEF CON 32: https://defcon.org/html/defcon-32/dc-32-index.html
UnDisruptible27: https://securityandtechnology.org/undisruptable27/
Send me your questions! https://fdsd.me/qna
Check out my book, Firewalls Don’t Stop Dragons: https://fdsd.me/book
Subscribe to the newsletter: https://fdsd.me/newsletter
Become a patron! https://www.patreon.com/FirewallsDontStopDragons
Get your Firewalls Don’t Stop Dragons Merch! https://fdsd.me/merch
Give the gift of privacy and security: https://fdsd.me/coupons
Support our mission! https://fdsd.me/support
Generate secure passphrases! https://d20key.com/#/
Table of Contents
Use these timestamps to jump to a particular section of the show.
0:01:26: Summer Camp Highlights
0:10:25: Hotel to Search Rooms During DEF CON
0:15:14: Apple has closed an ancient macOS Safari security hole
0:20:00: NFL to roll out facial authentication software league-wide
0:26:25: Ford wants patent for tech allowing cars to surveil and report speeding drivers
0:29:38: Automakers Sold Driver Data for Pennies, Senators Say
0:32:46: Border agents cannot search smartphones without a warrant,
0:36:44: Judge rules Google is a search and advertising monopoly
0:40:52: Tip of the Week: OSINT Remediation
0:54:25: EFF Tech Trivia update
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
