Black Hat 2019 addressed the new age in cybersecurity. Jeff Moss, Black Hat’s founder, gave a keynote speech in which he said, “Not only have we got the attention, we’re struggling with what we do with it – how we communicate.” Moss was referring to how the security community must now adapt and utilize this newfound attention in the most efficient way possible and offered some advice, “The quality of communication now determines a lot of our outcomes.”
Dino Dai Zovi, head of mobile security at Square, also offered advice on how we can, as a community, adapt to these challenges. He outlined three principles to help guide organizations towards success: Work backwards from the job, seek and apply leverage, and prioritize Culture over Strategy over Tactics. Dai Zovi echoed the same sentiment as Jeff Moss regarding cultural shift and the importance of communication, “Communication is just transmitting information between humans. Risks are shared. If you can reinforce that security is everyone’s job, you can move toward a more generative culture.”
Some other highlights from Black Hat included:
- Apple announced a new and improved bug bounty program for the public. It includes an increased product scope and higher rewards.
- Microsoft also offered a $300,000 bounty for working exploits.
- High-end hotels were discovered to be exposed to new IoT flaws in their smart locks.
- A sponsored encryption session titled “Time AI” was under attack from researchers, and the community is calling it a scam.