2017 0725-6 Tuesday and Wednesday at BSides Las Vegas
This gets a bit technical as it comes from my notes. Since my badge was free, I decided to find something to attend. I chose the “I am the Cavalry” track. It was mostly about how cyber security “researchers” (good guy hackers) interact and team with both companies and the Federal Government to identify vulnerabilities. Most of these sessions were about the lack of security in medical devices. One of the presenters was an MD from the FDA who specialized in medical devices.
It’s rather scary. Some quotes from these presentations:
“If you can’t afford to protect it, you can’t afford to connect it”
Meaning you shouldn’t connect a medical device to a network if it isn’t protected.
“Only 85% of hospitals have a cyber security specialist on staff” and most of those only have one.
“Cyber hygiene…. many medical devices are still using Windows XP or Windows 7″… meaning neither of these OS’s receive security updates/patches as they are no longer supported by Microsoft!
I attended one session called “Banking on Insecurity”. The message is still do not do
on-line banking! Some quotes:
“Every day we learn something about Windows we don’t like”
“Compliance is not security”
“China has bought Africa”
“Brazil is the epicenter of banking malware”
They had the largest coffee urn I’ve ever seen! It was at least 3 feet high, if not more!
In the early morning, before it got so very hot, I did a sketch of the dry fountain outside the hotel.