Ad: Manage updates with the Download App
ie8 fix

Defcon

Laws on Wi-Fi sniffing still up in the air, say specialists

LAS VEGAS -- Got a Wi-Fi network? If someone, say Google or the government, sniffs your open network, you may think you're legally protected. Don't be so sure.

It remains unclear whether the law protects your unencrypted Wi-Fi from interception, because there are differing interpretations and lack of court precedent, Kevin Bankston, senior counsel at the Center for Democracy and Technology, said in a session at Defcon yesterday.

The federal wiretap statute prohibits sniffing of contents of communications by a device unless the contents are readily accessible to the general public. If the network is password-protected you're … Read more

NSA director finally greets Defcon hackers

LAS VEGAS -- Over the past two decades, hackers at Defcon and the feds have been circling each other suspiciously. The nation's top "spook" -- National Security Agency Director Gen. Keith Alexander -- giving a keynote at the hacker confab, shows just how much tensions have mellowed.

"I've spent 20 years trying to get someone from the NSA" to speak at Defcon, said Defcon founder Jeff Moss, who serves on the U.S. Homeland Security Advisory Council and is chief security officer for ICANN. "It's eye-opening to see the world from their … Read more

Hacker delves into secret world of warranties

LAS VEGAS -- A young hacker here at Defcon 20 has pulled back the dense curtain of text and ambiguity surrounding warranties to show consumers how they can hack the warranty system -- and to tell companies how to improve their warranty management.

"Darkred," as he prefers to be called, explained to a standing-room only session that it's the way manufacturers manage serial numbers and warranties that allows the system to be hacked.

"The serial number makes you the owner of a product," said the 17-year-old, a high school senior from Texas. Darkred declined to … Read more

Facebook aims 'bug bounty' at in-house network

Facebook is to widen its "bug bounty" program to reward researchers who spot holes in its corporate network.

According to a Bloomberg report today, the move will be announced at the Defcon hacking conference in Las Vegas.

Facebook already pays a bug bounty to outside hackers who report weaknesses in its products, but the move extends the program to its own infrastructure, too.

Rewarding "white hat" companies and individuals who unearth vulnerabilities in Web services and report them, rather than exploit them, is "not a new concept. The reasoning is thus: entice individuals with cash … Read more

How to stay safe at Black Hat and DefCon

LAS VEGAS -- From journalists hacking the press room Ethernet to RFID skimmers swiping your ID without even touching your credit card, the war stories you've heard about Black Hat and DefCon are true more often than not.

The best way to avoid getting hacked at the annual security conferences is to not show up. Go somewhere disconnected, like a nice mountain retreat, instead of hitting the paranoia pills with several thousand other security professionals and obsessives in Vegas' urban playground.

But if you must go to Sin City, there are some actions you can take to protect your … Read more