CNET también está disponible en español.

Ir a español

Don't show this again

Attendance

Black Hat 2011 reportedly had more attendees this year than ever before, topping the charts with more than 6,000 people.
Updated:Caption:Photo:Seth Rosenblatt/CNET
1
of 30

Stealing credit card data

Zac Franken, director at Aperture Labs, holds up the Square device for processing credit cards with an iPad. His company has just discovered two ways to steal credit card data using Square.
Updated:Caption:Photo:Seth Rosenblatt/CNET
2
of 30

Credit card

"Less than 100 lines of code" was all it took to write the program that can be used to steal credit card information from Square, said Zac Franken of Aperture Labs.
Updated:Caption:Photo:Seth Rosenblatt/CNET
3
of 30

Kaminsky's grandmother

Security researchers Dan Kaminsky introduces his grandmother to Black Hat reporters. Kaminsky's grandmother, Raia Maurer, is in her late 80s, and has attended eight of the last 11 Black Hat conferences. Kaminsky noted that this makes her a veteran of more Black Hat's than most people in the room. She's also known for bringing "session cookies," home-baked cookies to share with session attendees.
Updated:Caption:Photo:Seth Rosenblatt/CNET
4
of 30

Siemens industrial control system vulnerabilities

Thomas Brandstetter, a CERT program manager for Siemens, and Dillon Beresford, of NSS Labs, during Beresford's presentation on Siemens industrial control system vulnerabilities.
Updated:Caption:Photo:Seth Rosenblatt/CNET
5
of 30

Tom Parker

Tom Parker, chief technology officer at FusionX, explaining in detail how SCADA systems are controlled.
Updated:Caption:Photo:Seth Rosenblatt/CNET
6
of 30

Mobile security

At Black Hat 2011 in Las Vegas, a mobile security panel focused on owning your phone at every level. The experts included, from left to right, Chris Wysopal, Tyler Shields, Dai Zovi, Charlie Miller, Ralf-Phillipp Weinmann, Nick Depetrillo, and Don Bailey.
Updated:Caption:Photo:Seth Rosenblatt/CNET
7
of 30

Chris Paget

Chris Paget talks about her experiences with Windows Vista at Black Hat 2011.
Updated:Caption:Photo:Seth Rosenblatt/CNET
8
of 30

Chrome OS vulnerabilities

Chrome OS vulnerabilities were revealed at Black Hat 2011 in Las Vegas by Matt Johansen, WhiteHat Security Team Lead, on the left, and Kyle Osborn, application security specialist focusing on offensive security for WhiteHat Security.
Updated:Caption:Photo:Seth Rosenblatt/CNET
9
of 30

Malicious extension

WhiteHat Security created this malicious extension to test Chrome OS vulnerabilities.
Updated:Caption:Photo:Seth Rosenblatt/CNET
10
of 30

RSA

RSA suffered a major attack earlier this year, but that didn't stop them from organizing a large, brightly lit booth in the Black Hat vendor's room.
Updated:Caption:Photo:Seth Rosenblatt/CNET
11
of 30

Amazon

Like many companies in the Black Hat vendor's room, Amazon.com was heavily recruiting security professionals.
Updated:Caption:Photo:Seth Rosenblatt/CNET
12
of 30

Johnny Long

Longtime hacker activist Johnny Long announced a new initiative at DefCon 19 to get hackers involved in charitable organizations.
Updated:Caption:Photo:Seth Rosenblatt/CNET
13
of 30

10-year-old hacker

10-year-old hacker CyFy discovered her first zero-day exploit earlier this year and presented her findings at the first DefCon Kids at DefCon 19.
Updated:Caption:Photo:Seth Rosenblatt/CNET
14
of 30

Hardware Hacking Session

Joe Grand of San Francisco (not pictured) ran the Hardware Hacking Session of the first DefCon Kids, a series of hands-on panels for children at DefCon. Here, he gave them G-shaped circuit boards and taught them how to solder a resistor in place. That created a connection that turned the circuit board into a basic "Simon"-style memory game.
Updated:Caption:Photo:Seth Rosenblatt/CNET
15
of 30

Android design flaw

A new Android design flaw was revealed at DefCon 19 by Sean Schulte, SSL Developer at Trustwave, and Nicholas Percoco, the Senior Vice President and Head of SpiderLabs at Trustwave.
Updated:Caption:Photo:Seth Rosenblatt/CNET
16
of 30

Floppy

At DefCon 19, F-Secure Chief Technical Officer Mikko Hyponnen shows off a 5-1/4 inch floppy that has on it the first personal computer virus.
Updated:Caption:Photo:Seth Rosenblatt/CNET
17
of 30

Ransomware

F-Secure's Mikko Hypponen showed off ransomware at his morning seminar the first day of DefCon. The talk proved a bridge between the more corporate Black Hat and the more hackery DefCon.
Updated:Caption:Photo:Seth Rosenblatt/CNET
18
of 30

Nintendo light guns

These members of the Capture the Flag team are using old Nintendo light guns to point to clues on the DefCon logo.
Updated:Caption:Photo:Seth Rosenblatt/CNET
19
of 30

Circuit map

This circuit map on the ground at DefCon was a clue for one of the many interactive games played at the hacker's conference.
Updated:Caption:Photo:Seth Rosenblatt/CNET
20
of 30

Capture the Flag

Three members of the DefCon team running the annual Capture the Flag game, who preferred to remain unidentified.
Updated:Caption:Photo:Seth Rosenblatt/CNET
21
of 30

Drill defense

Jeff Moss, also known as "Dark Tangent," founder of DefCon, holds up a hard drive that he has rendered inoperable and un-rescuable with a drill press. Only a few pounds of pressure were required to prevent the potential data theft.
Updated:Caption:Photo:Seth Rosenblatt/CNET
22
of 30

Lock picking

Lock picking gets an entire room at DefCon, supported by TOOOL, the open organization of lockpickers. Here, Wisconsinite Louis Holz explained how to create a key for a lock without a master key. "You take the blank key, stick it in the lock, and wiggle it around. That leaves an impression, which you then file down to make a copy."
Updated:Caption:Photo:Seth Rosenblatt/CNET
23
of 30

Lock pick kits

Lock picking is big enough at DefCon to support a brisk trade in lock pick kits sold in commemorative drinking glasses. Available were an 11-piece kit, and a 17-piece kit.
Updated:Caption:Photo:Seth Rosenblatt/CNET
24
of 30

MohawkCon

MohawkCon started off as a late-night way to spread the love of spikey hair. Two years ago, it became a daily fundraiser for the Electronic Frontier Foundation. Last year, the MohawkCon booth raised more than $3000 for the legal defense foundation in three days. Here, Sara of Denver puts the finishing touches on Justin Colbertson's mohawk and spike.
Updated:Caption:Photo:Seth Rosenblatt/CNET
25
of 30

Tuned

Michael Ossmann, founder of Great Scott Gadgets, created this guitar tricked out with electronics that, when finished, will help players tune their strings. The purple light indicates that particular string is in-tune, while other colors indicate it's not.
Updated:Caption:Photo:Seth Rosenblatt/CNET
26
of 30

Arduino board

Steve Ocepek shows off how to monitor network traffic with an Arduino board. The board, when lit by traffic, glowed bright green.
Updated:Caption:Photo:Seth Rosenblatt/CNET
27
of 30

Swag

The swag booth at DefCon gets a lot of foot traffic. Over the three days of the convention, there was barely a time when there wasn't a line at least 10 people long waiting to buy their DefCon-emblazoned gear.
Updated:Caption:Photo:Seth Rosenblatt/CNET
28
of 30

Used gear

The vendor room at DefCon also has a number of used gear resellers. You never know when you're going to want a KVM switch.
Updated:Caption:Photo:Seth Rosenblatt/CNET
29
of 30

No charge

This device charging station remained unused whenever I walked by it, possibly because it was a fake. Most people at DefCon use their own chargers and a spare wall socket, rather than risk data theft or device damage.
Updated:Caption:Photo:Seth Rosenblatt/CNET
30
of 30
Up Next

Tour Facebook's new privacy settings (screenshots)