Black Hat Asia
Coverage of Black Hat Asia in the Nexus archive.
- It's a myth that you need Mythos to find bugs: Open source models can do it just as well
Ari Herbert-Voss, CEO of AI-powered security startup RunSybil and former OpenAI security hire, claims open source models can match Anthropic's Mythos in bug detection, arguing automated tools will enhance security without replacing jobs. The statement was made at Black Hat Asia.
- Researchers find cyber-sabotage malware that may predate Stuxnet by five years
Researchers discovered FAST16, a cyber-sabotage malware potentially predating Stuxnet by five years, which targets engineering and physics simulation software to induce errors. SentinelOne, the cybersecurity firm that identified the malware, suggests its effects may still be present today.
- Weak security means attackers could disable all of a city's public EV chargers
A security flaw in public EV chargers and shared e-bikes, demonstrated at Black Hat Asia, allows attackers to disable entire city networks due to prioritization of convenience over security. The vulnerability, showcased in China, exposes IoT infrastructure to large-scale denial of service attacks.
- Hybrid clouds have two attack surfaces and you’re not paying enough attention to either
Israeli researchers at Black Hat Asia discovered vulnerabilities in Microsoft's Windows Admin Center, revealing hybrid cloud management tools create bidirectional attack surfaces between on-premises and cloud environments. The flaws highlight insufficient attention to hybrid cloud security risks.