Thousands of hackers and other cybersecurity professionals converged on Las Vegas on Wednesday for the annual Black Hat conference. Here are some highlights of the day’s events.
What happens when you drop nearly 300 USB drives on a college campus?
Spoiler alert: People not only pick them up, but they also plug them into their computers and open the files on them.
That was what Google researcher Elie Bursztein found in a study presented at Black Hat.
As part of his study, Bursztein dropped 297 USB drives in parking lots, hallways, outdoor areas and other places on the University of Illinois’ Urbana-Champaign campus. Inside the drives he installed special software that would allow them to “call home” if plugged in.
Of those drives 290, or 98 percent, were picked up and 135, or 45 percent, were plugged in and called home. The figures are concerning to security professionals who have long worried that systems could be hacked if a hacker dropped malware-infected USB drives near the offices of a company they wanted to breach for workers to pick up.
Bursztein said getting his program onto a small enough circuit board attached to a USB plug, then camouflaging that with a silicone outer shell was tricky but not impossible. The per-key cost was around $40.
HACKERS AS INTERNET GUARDIANS
Hackers have played a key role in both shaping and protecting the internet since its early days and still do.
That’s what technologist Dan Kaminsky told a crowd of hackers and cybersecurity professionals Wednesday as he kicked off the annual Black Hat conference in Las Vegas.
Kaminsky is co-founder and chief technologist of the cybersecurity firm White Ops and he encouraged those in attendance to stay curious, but to always remember the importance of keeping the internet safe for everyone.
He also noted the important role that encryption technology has played in enabling e-commerce and economic growth over the past 20 years and encouraged the crowd to share its security knowledge in order to improve security for everyone.
HACKERS FOR HILLARY
A fundraiser for Democrat Hillary Clinton’s presidential campaign was set to take place Wednesday in the same venue as Black Hat and feature the conference’s founder.
The event, slated for an upscale Mexican restaurant, promised to deliver discussions of cybersecurity policy with Black Hat and Def Con founder Jeff Moss. Also slated to attend were Michael Sulmeyer, the Clinton campaign’s Cybersecurity Working Group coordinator, along with Jake Braun, former Department of Homeland Security White House liaison.
Despite its founder’s involvement, the event isn’t officially tied to Black Hat. Tickets are being sold online and start at $100 for young professionals and run as high as $2,700.
The Democrats might be able to use the cybersecurity help after an embarrassing hack of emails from the Democratic National Committee that led to the resignation of chairwoman Debbie Wasserman Shultz and other party officials.