Media Alert: NetSPI Dominates Black Hat USA 2024 and DEF CON 32 with Five Can’t-Miss Speaking Sessions and Unveiling of CAASM
Fresh off its acquisition of Hubble Technology, proactive security leader spotlights 360-degree attack surface visibility and enhanced risk prioritization via The NetSPI Platform
Minneapolis, MN and Las Vegas – NetSPI, the proactive security solution, will be participating in several speaking sessions and appearances during Black Hat USA 2024 and DEF CON 32, taking place at the Mandalay Bay Expo Hall in Las Vegas from August 3 to 13.
On the heels of its June 2024 acquisition of Hubble Technology, a cyber asset attack surface management (CAASM) provider, the company will showcase The NetSPI Platform at Booth #2750 in the Mandalay Bay Convention Center. The integration of CAASM into The NetSPI Platform will enable security teams to achieve complete visibility of rapidly evolving attack surfaces and better prioritize vulnerabilities across the entire IT estate.
Come to the booth to discuss your proactive security needs and see NetSPI’s Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS) solutions in action. You can also book an on-site meeting with NetSPI here.
Additionally, NetSPI will host five speaking sessions during Black Hat, DEF CON, and BSides Las Vegas, the most the company has had since its inception.
Talks include:
The Tale of Two ASMs: EASM + CAASM
When: Thursday, August 8, 1:30-1:50pm PDT
Theatre: Business Hall Theatre D, Mandalay Bay
Vinay Anand
Chief Product Officer
NetSPI’s Chief Product Officer Vinay Anand and Chief Technical Officer Tom Parker will discuss how to improve continuous threat and exposure management (CTEM) by pairing EASM with CAASM. The duo will address the challenge of mapping a complete view of the attack surface, how EASM and CAASM work together to reduce attack surface sprawl, and tangible steps to achieve CTEM.
Beams & Light Streams: Letting Hackers Go Pew Pew, Building Affordable Light-Based Hardware Security Tooling
When: 8/8 | 11:20am-12:00pm PDT
Location: Islander EI, Level 0
Sam Beaumont
Director of Transportation, Mobility & Cyber-Physical Systems, NetSPI: Hardware & Integrated System Practice
Larry “Patch” Trowell
Director of Hardware & Embedded Systems, NetSPI: Hardware & Integrated Systems Practice
NetSPI’s Sam Beaumont, Director of Transportation, Mobility, and Cyber Physical Systems, and Larry “Patch” Trowell, Director of Hardware and Embedded Systems, join together to demonstrate how laser (or light) based hardware attacks aren’t just for nation-state actors. In fact, these attacks can be executed with a limited budget and hacker-and-maker mentality, right from home. Through inexpensive technology alternatives, Sam and Larry will unveil hardware malware, detect supply chain chip replacements, and delve into the realm of laser logic state imaging, integrating optics, laser selection, and machine learning components in their session.
GCPwn: A Pentester’s GCP Tool
When: 8/10 | 10:00-10:30am PDT
Location: LVCC, West Hall Floor 1, DEF CON Cloud Village
Scott Weston
Senior Security Consultant
Scott Weston, Senior Security Consultant at NetSPI, will share a new framework in Python specifically for the Google Cloud Platform, GCPwn. The overall goal is to make an up-to-date, maintained enumeration and exploit toolset for GCP pentesters, red teams, and security researchers that reduces the barrier of entry for learning GCP by allowing users to make their own modules that easily incorporate with the overall framework.
The Immortal Retrofuturism of Mainframe Computers and How to Keep Them Safe
BSides Las Vegas
When: 8/6 | 2:30-2:55pm PDT
Location: Proving Ground Track
DEF CON 32
When: 8/11 | 10:15-10:45am PDT
Location: AppSec Village
Michelle Eggers
Senior Security Consultant
Michelle Eggers, Security Consultant at NetSPI, will explore the pervasiveness of mainframe technology, why it will remain relevant to the future landscape of mission-critical applications, and share five trusted solutions for helping to secure these incredible computers.
Identity Theft is Not a Joke, Azure!
When: 8/10 | 11:10-11:50am PDT
Location: LVCC, West Hall Floor 1, DEF CON Cloud Village
Karl Fosaaen
Vice President of Research
Karl Fosaaen, Vice President of Research at NetSPI, will delve into the nuanced landscape of Managed Identities across multiple Azure services. He’ll explore how attackers exploit access to services with these identities to escalate privileges, move laterally, and establish persistence within Azure tenants. He’ll end the session by showcasing a tool designed to automate attacks against User-Assigned Managed Identities.
NetSPI Principal Security Consultant Tib3rius and Director of Mainframe Pentesting Phil Young will be hosting contests during DEF CON. This includes a team-based quiz show focused on man pages and software documentation (Aw, man.pages!), a cybersecurity-themed Family Feud game (Feet Feud), and a telecom-based CTF hosted on live VoIP lines routed through a modified asterisk PBX (PhreakMe).
- Aw, man.pages!: Friday, August 9 | 12 PM | Contest Stage
- Feet Feud: Saturday, August 10 | 6:30 PM | Tracks 1 & 2
- PhreakMe: Friday and Saturday 10 AM-6 PM; Sunday 10:00 AM – 1:00 PM | Online and in-person in the contest area
You can also join NetSPI for a poolside happy hour at Mandalay Bay’s Daylight Beach Club on Thursday, August 8, from 3 to 7 PM, for food, drinks, and networking.
About NetSPI
NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most.
Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI helps security teams take a proactive approach to cybersecurity with more clarity, speed, and scale than ever before.
By continually advancing solutions such as Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS), NetSPI goes beyond the noise to deliver high impact results and recommendations based on business needs, so customers can protect their priorities, perform better, and innovate with confidence.
NetSPI secures the most trusted brands on Earth, including nine of the top 10 U.S. banks, four of the top five leading cloud providers, three of the five largest healthcare companies, four MAMAA Big Tech companies, seven of the top 10 U.S. retailers & e-commerce companies, and many of the Fortune 500.
NetSPI is headquartered in Minneapolis, MN, with offices across the U.S., Canada, the UK, and India. Follow NetSPI on LinkedIn and X.
NetSPI Media Contacts:
Jessica Bettencourt
Inkhouse for NetSPI
NetSPI@inkhouse.com
Victoria Norris
NetSPI
Victoria.Norris@netspi.com
Explore more News
NetSPI Names Caroline Japic as Chief Marketing Officer to Drive Next Phase of Growth and Expand Proactive Security Vision
NetSPI announced Caroline Japic joins its team as Chief Marketing Officer to amplify its vision for proactive security.
VMBlog: National Cybersecurity Awareness Month 2024: Industry Experts Share Their Thoughts
Gain insights into social engineering prevention from NetSPI Director of Social Engineering, Patrick Sayler, for Cybersecurity Awareness Month 2024.
Help Net Security: Microsoft patches two zero-days exploited in the wild
Get expert insights into Microsoft's Patch Tuesday in October 2024 from NetSPI Security Consultant, Will Bradle.