This is a bit of a quick rant. I heard about this last week but didn’t get around to commenting. Apparently last week at RSAC CrowdStrike decided to throw ethics aside for showmanship by bringing down the Kelihos botnet on stage in front of a crowd.
Why? How long were they siting on this just so they could do in front of a bunch of people and press?
While I applaud the work they did do, I wonder about the people who got their creds stolen and bank accounts raided between when they knew how to take it down and when they actually did on stage. This seems completely irresponsible and shaming to see what some folks in the InfoSec industry are headed to.
Read more about the take down at Threatpost.
A couple months back I had the pleasure to attend the 2nd ever DerbyCon event down in Louisville, KY. This was the best conference of the year. DEFCON is great but you get all the feel of DEFCON with 1/10th the people and none of the clicks. This was truly one big group to have fun and learn about security. It was also nice to have multiple defensive talks. While I understand that DEFCON and BlackHat are offensive conferences it was nice to have a mix of both especially when there wasn’t a bunch of vendor sponsored talks. In fact I sat in on a couple talks that were specific to FOSS tools.
Check out the talks at http://www.irongeek.com
I have been meaning to get a post up about my time at BlackHat 2012 and Defcon XX. So here goes, just over a month late.
Read more of this post