BEGIN:VCALENDAR
PRODID:-//vBulletin 6//EN
VERSION:2.0
CALSCALE:GREGORIAN
BEGIN:VEVENT
UID:1da61ad3-1daa-435c-9e07-a812c72d052c
DTSTAMP:20260420T050714Z
SUMMARY:IoT Under the Microscope: Vulnerability Trends in the Supply Chain
DESCRIPTION:Title: IoT Under the Microscope: Vulnerability Trends in the Su
 pply Chain\n\nDescription:\nIoT device manufacturers have no idea what's r
 unning on their devices -- they really don't.\n\nIn 2002 then-US Secretary
  of Defense\, Donald Rumsfield\, brought public attention to a notion that
  information can be divided into three categories: known knowns\, known un
 knowns\, and unknown unknowns. As hackers\, how can we apply this formulat
 ion to IoT vulnerabilities?\n\nThe known knowns: Vulnerabilities that have
  been explicitly discovered through scanning and testing. The known unknow
 ns: Newly created software that has yet to undergo any application securit
 y testing. The unknown unknowns: Systems that the defender does not know a
 bout.\n\nThere is\, in fact\, a fourth dimension: unknown knowns\, which c
 omprise “that which we intentionally refuse to acknowledge that we know
 ” or “do not like to know.”\nThe unknown knowns: Vulnerabilities tha
 t are known to exist\, but that have not been associated with all the syst
 ems they actually affect.\n\nIn this talk\, we report on IoT device vulner
 ability findings at massive scale\, as a result of our firmware collection
  and analysis. For this research we have selected approximately 50k firmwa
 re images\, representing over 7M files\, 10k products\, and 150 vendors\, 
 spanning many different architectures and operating systems. We will highl
 ight some of the trends we've uncovered in supply chain vulnerabilities\, 
 and reveal specific examples of device backdoors\, botnets\, and vulnerabi
 lities discovered in medical\, home\, and commercial device firmware.\n\nS
 peaker(s): Parker Wiksell\n\nLocation: IoT Vlg / IOT Vlg\n\nDiscord: https
 ://discord.com/channels/708208267699945503/732734565604655114\n\nEvent sta
 rts: 2020-08-07 13:15 (01:15 PM) PDT (UTC -07:00)\n\nEvent ends: 2020-08-0
 7 14:00 (02:00 PM) PDT (UTC -07:00)\n\nFor the most up-to-date information
 \, please either visit https://info.defcon.org\, or use HackerTracker\, wh
 ich is available for iOS and Android. This is an automated message\, and t
 his data was last modified 2020-08-08T02:58 (UTC).
URL:https://forum.defcon.org/node/234209
DTSTART:20200807T211500Z
DTEND:20200807T220001Z
LOCATION:IoT Vlg / IOT Vlg
END:VEVENT
END:VCALENDAR