-
Podcast
Risk & Repeat: Black Hat 2020 highlights
This week's Risk & Repeat podcast recaps Black Hat USA 2020 and discusses some of the best sessions, worst vulnerabilities and the overall virtual conference experience. Listen Now
-
Article
Not just politics: Disinformation campaigns hit enterprises, too
In her Black Hat USA 2020 keynote, Renée DiResta of the Stanford Internet Observatory explains how nation-state hackers have launched 'reputational attacks' against enterprises. Read Now
-
Article
Games, not shame: Why security awareness training needs a makeover
Elevate Security co-founder Masha Sedova spoke at Black Hat USA 2020 about why traditional security awareness training is ineffective and fails to change risky behavior. Read Now
-
Article
10 years after Stuxnet, new zero-days discovered
A decade after Stuxnet, SafeBreach Labs researchers discovered new zero-day vulnerabilities connected to the threat, which they unveiled at Black Hat USA 2020. Read Now
Editor's note
This year's Black Hat conference brought together top technical experts, thought leaders, innovative vendors and cybersecurity pros. For over 20 years, Black Hat has been a place to share research, development and trends. And though in 2020 Black Hat went virtual, this year was no different. SearchSecurity reporters and editors were there on hand to keep you informed on what's new in the security community.
Several days of training sessions opened the event; sessions covered an array of topics, including cloud security, detection and response essentials, advanced attack methods and response tactics, and pen testing and malware analysis.
After two timely keynote speeches -- on election security and online disinformation -- the briefing portion of the conference began. Its packed schedule offered in-depth, vendor-neutral presentations on every imaginable cybersecurity topic.
Our reporters covered the key developments from Black Hat 2020 and gathered responses from expert attendees, too.
1Cybersecurity in a democracy
In this election year, cybersecurity is a key concern. At Black Hat 2020, experts delved into the weak links in election security and what can be done to ensure a fair and honest US election.
-
Podcast
Risk & Repeat: Black Hat 2020 highlights
This week's Risk & Repeat podcast recaps Black Hat USA 2020 and discusses some of the best sessions, worst vulnerabilities and the overall virtual conference experience. Listen Now
-
Article
Not just politics: Disinformation campaigns hit enterprises, too
In her Black Hat USA 2020 keynote, Renée DiResta of the Stanford Internet Observatory explains how nation-state hackers have launched 'reputational attacks' against enterprises. Read Now
-
Article
Voting vendor ES&S unveils vulnerability disclosure program
Election Systems & Software, the biggest vendor of U.S. voting equipment, will allow the security researcher community to test its elections equipment for vulnerabilities. Read Now
-
Article
CISA chief: Ransomware could threaten election security
During a Black Hat USA 2020 session, CISA Chief Christopher Krebs said ransomware attacks on city, state and local governments are a major concern for election security. Read Now
2New exploits and response tactics
Informed defense begins with a clear picture of the threat. At BlackHat 2020, presenters covered key vulnerabilities, including the "human factor," and how hackers now exploit them.
-
Article
Security team analyzes data breach costs for better metrics
Security researchers discuss their findings on misleading and incorrect data breach cost metrics and share how breach reporting and information sharing can help all organizations. Read Now
-
Article
Healthcare CISO offers alternatives to 'snake oil' companies
Indiana University Health CISO Mitchell Parker discussed internal risk assessments, security snake oil salesmen and more at his Black Hat USA 2020 talk. Read Now
-
Article
Games, not shame: Why security awareness training needs a makeover
Elevate Security co-founder Masha Sedova spoke at Black Hat USA 2020 about why traditional security awareness training is ineffective and fails to change risky behavior. Read Now
-
Article
10 years after Stuxnet, new zero-days discovered
A decade after Stuxnet, SafeBreach Labs researchers discovered new zero-day vulnerabilities connected to the threat, which they unveiled at Black Hat USA 2020. Read Now
-
Article
Ripple20 vulnerabilities still plaguing IoT devices
Months after Ripple20 vulnerabilities were reported, things haven't gotten much better, say experts at Black Hat USA 2020. In fact, the world may never be fully rid of the flaws. Read Now
3Pre-conference coverage
Black Hat USA was virtual in 2020, but it remained an important place for information security professionals to gather and discuss the latest trends in their field, from emerging threats to innovative tools and techniques. Learn about Black Hat 2020 with this overview of the revised plan for the conference and recent coverage of key cybersecurity topics, including our reporters' reflections on the reality of virtual events in the pandemic era.
-
Article
How CISOs can deal with cybersecurity stress and burnout
Being a paramedic and working in cybersecurity taught CISO Rich Mogull how to avoid stress and burnout. Check out his advice to maintain mental health in high-stress roles. Read Now
-
Podcast
Risk & Repeat: Black Hat, DEF CON canceled
This week's Risk & Repeat podcast looks at the recent cancellations of Black Hat USA 2020 and DEF CON 28 and what their virtual replacements will try to accomplish. Listen Now
-
Article
Black Hat 2019 brings out new security, protection offerings
The 22nd Black Hat conference in Las Vegas brought together a slew of vendors in network and data security with a variety of security offerings to pitch. Read Now
-
Article
APTs infiltrated Linux servers undetected for nearly 10 years
New BlackBerry research shows how five APT groups operating on behalf of the Chinese government infiltrated enterprise Linux environments undetected for nearly a decade. Read Now