this post was submitted on 14 Sep 2024
150 points (94.6% liked)
Privacy
32096 readers
703 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
That's kind of silly honestly. I can see where they are coming from but the people at the conference are the good guys. If I were them I would get some of those security professionals to give suggestions on how to have better security. Also random room checks aren't going to catch anything. Anyone who wants to cause harm isn't going have such bad opsec. You will end up catching people with legitimate and highly dangerous stuff like routers, network switches and vacuum cleaners
Just FYI, you need very little skill to clone the WiFi access gateway of a hotel WiFi, and then blast their SSID from your router, to lure close guests into your honeypot. Once people are on your malicious gateway, the fun starts.
In a hotel with hundreds of hackers on alcohol, it's not unlikely for people to fuck around.
There is also no requirement to be a "good guy" to attend the conference.
Correct. But it's kind of the inevitable outcome that only "good guys" attend. Why would any bad actor go there and risk being exposed / caught...
Defcon is a useful resource for networking and learning. It being run by and for good guys doesn't mean bad guys don't find the event useful. The vague risk of "getting caught" is probably worth taking, regardless of whether that risk is tangible, especially if they follow proper security practices.
In short, untreated mental illness
Isn't also a game at defcon to spread a harmless package to as many devices as possible?
Hopefully that would get flagged. If you start broadcasting that will show up under rouge ap detection
Right. And then they locate it and search the rooms nearby. Exactly what their disclaimer is about
Why would someone bring their own vacuum cleaner in a hotel room?
The automatic vacuum cleaners have lots of security issues and are often a common target at blackhat
https://y.yarn.co/3d47dd3a-f3d2-4e4b-9d88-4c87bed33876_text.gif