Conference Talks – November 2021

This month, members of NCC Group will be presenting their work at the following conferences: Jennifer Fernick & David Wheeler (Linux Foundation), "Keynote: Securing Open Source Software", to be presented at The Linux Foundation Member Summit (November 2-4 2021)Brian Hong, "Sleight of ARM: Demystifying Intel Houdini", to be presented at Ekoparty (November 2-6 2021)Sanne Maasakkers, … Continue reading Conference Talks – November 2021

Conference Talks – October 2021

This month, members of NCC Group will be presenting their work at the following conferences: Jennifer Fernick & external panelists, “Threatscape 2023 and Beyond: AI, Deep Fakes and Other Unexpected Challenges”, to be presented at MapleSec (Oct 6 2021)Damon Small, “Which security role is right for me?", to be presented at Shellcon  (Oct 8 2021)Brian Hong , “Sleight of … Continue reading Conference Talks – October 2021

Conference Talks – September 2021

This month, members of NCC Group will be presenting their work at the following conferences: Javed Samuel, "Overview of Open-Source Cryptography Vulnerabilities", to be presented at the International Cryptographic Module Conference 2021 (Virtual - Sept 3 2021)Robert Seacord, "Secure Coding", to be presented at Auto ISAC Analysts (Virtual - Sept 7 2021)Erik Steringer, "Automating AWS … Continue reading Conference Talks – September 2021

NCC Group Research at Black Hat USA 2021 and DEF CON 29

This year, NCC Group researchers will be presenting 10 presentations at Black Hat USA (2 Briefings, 2 Arsenal tools, and 6 training sessions), and 7 presentations at DEF CON 29 (2 main track talks, 3 Demo Labs, and 2 Village talks). A guide to these presentations (abstracts, dates, and links) is included below. We will … Continue reading NCC Group Research at Black Hat USA 2021 and DEF CON 29

Conference Talks – June 2021

This month, members of NCC Group will be presenting their work at the following conferences: Dirk-Jan Mollema, "Walking your dog in multiple forests - Breaking AD Trust Boundaries Through Kerberos Vulnerabilities", to be presented in a Black Hat Webcast (Virtual, June 3 2021) Michael Gough, "Incident Response Fails – What we see with our clients, … Continue reading Conference Talks – June 2021

Conference Talks – May 2021

This month, members of NCC Group will be presenting their work at the following conferences: Sourya Biswas, "Psychology of the Phish: Leveraging the Seven Principles of Influence", to be presented at ISACA Conference North America (Virtual - May 5 2021)Sourya Biswas, "Cybersecurity is War: Lessons from Historical Conflicts", to be presented at Secure360 (Virtual - … Continue reading Conference Talks – May 2021

NCC Group’s Upcoming Trainings at Black Hat USA 2021

NCC Group will be presenting 4 different training courses at Black Hat USA 2021. Below you will find high level details about each course, as well as a link to a detailed course description and course registration details on the Black Hat website. Join us! Mastering Container Security V5 - Black Hat edition (August 2-3 … Continue reading NCC Group’s Upcoming Trainings at Black Hat USA 2021

Conference Talks – February/March 2021

Throughout February and March, members of NCC Group will be presenting their work at the following conferences: Jennifer Fernick (NCC Group), Rao Lakkakula (JPMorgan Chase), Christopher Robinson (Red Hat), & Kay Williams (Microsoft), "Frontiers in Securing the Open Source Ecosystem," to be presented at FOSS Backstage (Virtual - February 10-12 2021)Robert Seacord (NCC Group) & … Continue reading Conference Talks – February/March 2021

Real World Cryptography Conference 2021: A Virtual Experience

Earlier this month, our Cryptography Services team got together and attended (virtually) the IACR's annual Real World Cryptography (RWC) conference. RWC is a fantastic venue for the latest results in real world cryptography from industry and academia. Holding this conference virtually inevitably introduced some changes: to accommodate as many time zones as possible, the daily … Continue reading Real World Cryptography Conference 2021: A Virtual Experience

ICS/OT Security & the evolution of the Purdue Model: Integrating Industrial and Business Networks

In this recording of a presentation by NCC Group's Damon Small at Hou.Sec.Con in October 2020, he outlines the evolution of the Purdue Reference Model in ICS/OT security, which draws the security boundaries between users, ICS networks, and business networks, and shows the dramatic ways in which these boundaries have blurred in recent years, necessitating … Continue reading ICS/OT Security & the evolution of the Purdue Model: Integrating Industrial and Business Networks