A journey of a thousand miles begins with a single pick.
For those who couldn't join us at the #VotingVillage at #DEFCON33 earlier this month, videos of all the talks are online in this YouTube playlist: https://www.youtube.com/playlist?list=PLltrHIXltfGLotq79TBgIK9QK4O29Z2FF
We had a great program covering a wide range of topics on the theory and practice of US election security.
I'll post a few highlights of more general interest in the thread that follows.
Using Bitwarden (also other password managers!) makes you #vulnerable to 1 click credit card hijacking.
@bitwarden sees issue as low prio and did not bother to fix it in 4 months :(
This according to #cybersecurity researcher Marek Tóth in his recent #defcon33 talk
https://marektoth.com/blog/dom-based-extension-clickjacking/#fixed-versions
I am wondering if this is really #Chrome only or also impacts the #Firefox #bitwarden extension.
deutrino
boosted
Several people were arrested during an undercover operation targeting child sex predators in Nevada. One of them is Tom Alexandrovich, who turns out to be the Executive Director of the Israel Cyber Directorate. The child predator was released.
I believe the security community must denounce this person and be banned from the conferences, including BlackHat and DefCon.
@fr0gger since, unfortunately, you are in the picture with this person (LinkedIn account of him was deleted already), and you have a good reputation within our community, would be super cool if you'd take a lead and get in touch with the BlackHat/DefCon organizers.
#BlackHat#BHUSA#BlackHatUSA2025#Cybersecurity#ThreatIntelligence#DefCon#Israel#DEFCON33#TomAlexandrovich
Evan Prodromou
boosted
Several people were arrested during an undercover operation targeting child sex predators in Nevada. One of them is Tom Alexandrovich, who turns out to be the Executive Director of the Israel Cyber Directorate. The child predator was released.
I believe the security community must denounce this person and be banned from the conferences, including BlackHat and DefCon.
@fr0gger since, unfortunately, you are in the picture with this person (LinkedIn account of him was deleted already), and you have a good reputation within our community, would be super cool if you'd take a lead and get in touch with the BlackHat/DefCon organizers.
#BlackHat#BHUSA#BlackHatUSA2025#Cybersecurity#ThreatIntelligence#DefCon#Israel#DEFCON33#TomAlexandrovich
phildini
and 1 other
boosted
@cooperq and I gave a talk at #defcon33 covering @eff 's Rayhunter project: a tool for detecting cell site simulators (fake/malicious cell towers) on commodity hotspots, viewable here: https://spectra.video/w/jt9rZHCU51Rh58cBD8oiP3
We go into detail on how cell site simulators work and how *you*, dear reader, can get involved in the project, as well as how we had fun with #rust .
I want to shout out EFF's Will Greenberg, @untitaker , and @sasha as they have put in massive amounts of work on this project as well.
Truly an amazing time at #DEFCON33 as we launched #TechReclaimers ! Thanks to the incomparable @thegibson and the entire family at #HackersTown , friends at #EFF and #CdC for the extra magic! Video of our presentation hopefully up soon enough ...
And now, to work!
You can sign up for notices from Tech Reclaimers as we gear up for sociotechnical change at: @TheBulletin
@cooperq and I gave a talk at #defcon33 covering @eff 's Rayhunter project: a tool for detecting cell site simulators (fake/malicious cell towers) on commodity hotspots, viewable here: https://spectra.video/w/jt9rZHCU51Rh58cBD8oiP3
We go into detail on how cell site simulators work and how *you*, dear reader, can get involved in the project, as well as how we had fun with #rust .
I want to shout out EFF's Will Greenberg, @untitaker , and @sasha as they have put in massive amounts of work on this project as well.
Bruja 🍉
boosted
At #DEFCON33, #Meshtastic ran its biggest mesh yet—2K+ nodes, thousands of msgs & an unexpected live vulnerability demo. Lessons learned ✅ Big plans for security, identity & UX.
Full recap 👉 https://meshtastic.org/blog/that-one-time-at-defcon/
mkb
and 1 other
boosted
Check out my #DEFCON33 talk about the Signalgate, full of unbelievable incompetence from the highest levels of the Trump administration https://www.youtube.com/watch?v=KFYyfrTIPQY
At #DEFCON33, #Meshtastic ran its biggest mesh yet—2K+ nodes, thousands of msgs & an unexpected live vulnerability demo. Lessons learned ✅ Big plans for security, identity & UX.
Full recap 👉 https://meshtastic.org/blog/that-one-time-at-defcon/
The Tor Project
boosted
I stopped by the @torproject booth to show support and grabbed some merch. Everyone there is awesome. Keep up the great work! #DEFCON33
Check out my #DEFCON33 talk about the Signalgate, full of unbelievable incompetence from the highest levels of the Trump administration https://www.youtube.com/watch?v=KFYyfrTIPQY
mkb
boosted
Continuing our live DEF CON in Las Vegas broadcast with kampf spinning, tune in at https://somafm.com/player24/live/ #defcon33
Continuing our live DEF CON in Las Vegas broadcast with kampf spinning, tune in at https://somafm.com/player24/live/ #defcon33