BlackHat-USA-2019: videos online

December 16, 2019 ~ hucktech ~ Leave a comment

The videos from BlackHat-US-2019 are on Youtube now:

https://twitter.com/BlackHatEvents/status/1205203178431619072

https://www.blackhat.com/us-19/briefings/schedule/

For example:

My Black Hat USA 2019 talk about https://t.co/iYwlZdFVjc and how we use it at @Cruise is now online https://t.co/EIjyj75noQ #ownit #seektruth
— Collin Mulliner (@collinrm) December 13, 2019

Video released: https://t.co/s1ATS1w2lU https://t.co/A5kk4Tq4Rq
— Xeno Kovah (@XenoKovah) December 13, 2019

The video of the talk @hasarfaty and I gave at Black Hat USA 2019 is now available on YouTube: https://t.co/tqk5jmVbW2 #BHUSA #CSME #ME #IntelME @IntelSecurity @intel https://t.co/GKDcKxJrnJ
— Yanai Moyal (@yanaimoyal) December 13, 2019

Our #BHUSA talk recording "Breaking Through Another Side: Bypassing Firmware Security Boundaries from Embedded Controller" is up! https://t.co/hqUTYSADvU

EC issue we found has a bigger impact from what we expected in the beginning https://t.co/QGEY6vcXNm
— Alex Matrosov (@matrosov) December 12, 2019

BlackHat: Behind the scenes of iOS and Mac Security

June 28, 2019 ~ hucktech ~ Leave a comment

At BH this year @radian's going to cover a bit of what we've been up to pic.twitter.com/dNjc4cKO0r
— Xeno Kovah (@XenoKovah) June 28, 2019

Very excited to return to the Black Hat stage this year to talk about some world-class Apple security features! iOS code integrity and Pointer Authentication Codes, Mac secure boot with the T2 Security Chip, the crypto behind the Find My feature, and more: https://t.co/ftnHs3iBO5 https://t.co/SzkzTt354z
— Ivan Krstić (@radian) June 26, 2019

Ivan Krstić, Head of Apple Security Engineering and Architecture at Apple, will be speaking at BlackHat on the T2 security processor:

[…]We will discuss three iOS and Mac security topics in unprecedented technical detail, offering the first public discussion of several key technologies new to iOS 13 and the Mac.[…]The T2 Security Chip brought powerful secure boot capabilities to the Mac. Comprehensively securing the boot process required protections against sophisticated direct memory access (DMA) attacks at every point, even in the presence of arbitrary Option ROM firmware. We will walk through the boot sequence of a Mac with the T2 Security Chip and explain key attacks and defenses at each step, including two industry-first firmware security technologies that have not been publicly discussed before.[…]

https://www.blackhat.com/us-19/briefings/schedule/#behind-the-scenes-of-ios-and-mac-security-17220

BlackHat 2018 God Mode Unlocked: hardware backdoors in x86 CPUs, released

September 10, 2018September 10, 2018 ~ hucktech ~ Leave a comment

Re: https://firmwaresecurity.com/2018/08/10/rosenbridge-hardware-backdoors-in-some-x86-cpus/

Blackhat has released the video of this presentation:

VIDEO: GOD MODE UNLOCKED – Hardware Backdoors in x86 CPUs. #BHUSA Briefing by @xoreaxeaxeax has more than 50,000 views. Watch it now on the #BlackHat YouTube channel: https://t.co/VhPjBWzyFH

— Black Hat (@BlackHatEvents) September 9, 2018

Eclypsium presentations from Blackhat and DEF CON uploaded

August 16, 2018 ~ hucktech ~ Leave a comment

Re: https://firmwaresecurity.com/2018/08/10/eclypsium-remotely-attacking-system-firmware/

Click to access DC26_UEFI_EXPLOITATION_MASSES_FINAL.pdf

Click to access BH2018_REMOTELY_ATACKING_SYSTEM_FIRMWARE_FINAL.pdf

Progress bar: loading and installing persistent UEFI firmware implant remotely 😁😁😁…

before BitLocker, System Guard, Credential Guard or other SW defenses, before the OS!

Remote UEFI exploit by @jessemichael @HackingThings @ABazhaniuk at #BHUSA

Demo https://t.co/V8LP4FE9M4 pic.twitter.com/Vhg2wntQOh

— Yuriy Bulygin (@c7zero) August 16, 2018

Slides of "UEFI Exploitation for the Masses" #DEFCON26 talk. @HackingThings and @jessemichael showed how to debug exploits in UEFI system firmware: https://t.co/fjlGzucote pic.twitter.com/OjdsIkgtiD

— Alex Bazhaniuk (@ABazhaniuk) August 16, 2018

Slides of our "Remotely Attacking System Firmware" #Blackhat2018 presentation. We demonstrated 100% reliable RCE exploit in the UEFI system firmware : https://t.co/iL6nZpwSnf // with @HackingThings @jessemichael pic.twitter.com/L4WB8apPry

— Alex Bazhaniuk (@ABazhaniuk) August 16, 2018

Black Hat presentation: https://t.co/rOTwxwv3H6 [PDF]

DEFCON presentation with additional details: https://t.co/xBP9lo4PQ6 [PDF]

— Yuriy Bulygin (@c7zero) August 16, 2018

The Unbearable Lightness of BMC’s

August 11, 2018 ~ hucktech ~ Leave a comment

The Register has a bit of background on BMC attacks, based on the recent presentation at Blackhat:

Lets talk about data center backdooring https://t.co/REwA8OlWUx

— Nico Waisman (@nicowaisman) August 10, 2018

https://www.blackhat.com/us-18/briefings/schedule/#the-unbearable-lightness-of-bmcs-10035

https://www.theregister.co.uk/2018/08/10/data_center_hacking/

Microsoft Blackhat speculative execution slides posted

August 11, 2018 ~ hucktech ~ Leave a comment

Slides posted for the #BHUSA presentation by @anders_fogh & @CTurtE on systematizing and mitigating speculative execution side channels vulnerabilities: https://t.co/4OoqLupyRT

— Matt Miller (@epakskape) August 10, 2018

Click to access us-18-Fogh-Ertl-Wrangling-with-the-Ghost-An-Inside-Story-of-Mitigating-Speculative-Execution-Side-Channel-Vulnerabilities.pdf

Eclypsium: Remotely Attacking System Firmware

August 10, 2018 ~ hucktech ~ 1 Comment

At BlackHat, Eclypsium gave a great talk with an overview of platform firmware security threats, focusing on network-based attacks, including poorly-tested OEM firmware update implementations.

Don't miss our presentation "Remotely Attacking System Firmware" with @jessemichael & @HackingThings at #BlackHat2018 tomorrow 1:30pm in South Pacific F: https://t.co/QmDabencJ3 pic.twitter.com/ipZ85gjFVE

— Alex Bazhaniuk (@ABazhaniuk) August 7, 2018

Here is the video from our @BlackHatEvents presentation "Remotely Attacking System Firmware", and as customary with such things, calculator must be involved.https://t.co/4EkAoRjeZs

— Mickey (@HackingThings) August 9, 2018

“Update Mechanism Flaws Allow Remote Attacks on UEFI Firmware” by @LindseyOD123 covering most recent research presented by @Eclypsium’s @HackingThings @jessemichael & @ABazhaniuk at #BHUSA https://t.co/XIOp6ZszJl

— Yuriy Bulygin (@c7zero) August 8, 2018

https://threatpost.com/update-mechanism-flaws-allow-remote-attacks-on-uefi-firmware/134785/

https://www.blackhat.com/us-18/briefings/schedule/index.html#remotely-attacking-system-firmware-11588

Meet Us At Black Hat USA 2018

August 1, 2018 ~ penglish0 ~ 1 Comment

Management here – we’ll be at Black Hat USA 2018.. next week. If you’ll be there, be sure and stop by our Arsenal Tools Demo Wednesday, August 8 | 2:30pm-3:50pm, Station #5.

https://www.blackhat.com/us-18/arsenal/schedule/index.html#firmware-audit-platform-firmware-security-automation-for-blue-teams-and-dfir-11359

We’ll be around before and after, attending talks and available for meetings. If you think your employer should be doing more platform firmware security, we’d love to talk! Email to set up a meeting:

blackhatusa2018@preossec.com

BlackHat cancels Intel/Eclypsium CHIPEC training

June 3, 2018 ~ hucktech ~ Leave a comment

I notice that the Intel/Eclypsium training at Black Hat USA 2018 is no longer listed. Sounds like not enough people signed up?!

AFAIK, the next opportunity to get Eclypsium CHIPSEC training is at REcon (and REcon appears to have cheaper training rates than Blackhat):

https://recon.cx/2018/montreal/training/trainingfirmware.html

There’s also the training materials from older training from Intel ATR/CHIPSEC team, available here:

https://firmwaresecurity.com/2017/05/25/intel-atr-releases-uefi-firmware-training-materials/

LegbaCore Summer Tour announced

June 8, 2015 ~ hucktech ~ Leave a comment

LegbaCore, one of the main BIOS security research firms around, has updated their web site to include calendar information about their upcoming presentations and training for the Summer and early Fall.

They will be at HITB Singaport giving BIOS training in October. They’ll be speaking at BlackHat/DEFCON on Mac firmware attacks. They’ll be giving “Understanding x86-64 Assembly for Reverse Engineering and Exploits” training at BlackHat USA. They’ll be talking at SummerCon, entitled “How Many Million BIOSes Would You Like to Infect?”. “This talk will detail the result of our 1 month effort to infect the BIOS of every business class system we could get our hands on.”

They’ve also updated their Training resources. They now have *SIX* full days of BIOS/UEFI training!

More Information:

http://gsec.hitb.org/sg2015/sessions/tech-training-6-introductory-bios-smm-attack-defense/
https://www.blackhat.com/us-15/training/understanding-x86-64-assembly-for-reverse-engineering-and-exploits.html
http://www.legbacore.com/News.html

Tweets by legbacore

http://www.legbacore.com/Training.html
http://www.summercon.org/presentations.html#bioses