.::DEFCON 201 Online Meet Up — February 2021 — LOVE-LETTER-FOR-YOU.vbs::.
======================================================
Date: February 19th, Friday
Time: 7:00 PM EST — 10:00 PM EST
Meet-Up: https://www.meetup.com/DEFCON201/events/276456746/
Facebook [TOR]: https://www.facebookcorewwwi.onion/events/441010767112077/
Hackaday: TBA
=====================================================
Welcome to the February 2021 DEFCON 201 Meet Up!
First off to get this out of the way, we want to offer our condolences and support for (at this time of writing) those in Texas who thanks to climate change has been hit with a blizzard knocking out power, water and heat for millions of people in the state causing people to freeze to death as the Texas “Leadership” abandons them.
If you are in Texas and/or know someone in Texas call 211 or find warming center here:
And if you want to donate to the relief effort:
https://secure.actblue.com/donate/aoc-social-20210218/?refcode=aoc-social-20210218-7pmtweet
https://feedingtexas.networkforgood.com/projects/101860-feeding-texas-general-support
https://redcross.org/local/texas/central-and-south-texas.html
On a lighter note, our meet up combines many thing that are going on. Black History Month in the United State where we celebrate and highlight the achievements and creations from the brilliant minds of African Americans, the soul crushing corporatism of feeding Hallmark’s bottom line that is Valentines Day and just in case you have not noticed…we are STILL in a pandemic with NEW strains of COVID-19 coronavirus trying to love our cells a little too much for over a year now.
Sit back, learn and get ready for some fun hacks!
======================================================
Live Streams:
======================================================
Twitch: https://www.twitch.tv/defcon201live
dLive: https://dlive.tv/defcon201
YouTube: https://www.youtube.com/c/defcon201
Invidious [TOR]: http://invidious.3o7z6yfxhbw7n3za4rss6l434kmv55cgw2vuziwuigpwegswvwzqipyd.onion/channel/UCYDQaOHbK5trRU2CDgb0qSg
Facebook [TOR]: https://www.facebookcorewwwi.onion/groups/defcon201/
PeerTube: https://diode.zone/accounts/dc201/video-channels
======================================================
.::AGENDA & SCHEDULE::.
7:00pm — 8:00pm
PRE SHOW :: Healthscare — An Insider’s Biopsy of Healthcare Application Security — Seth Fogie, Guy Raz
8:00pm — 8:05pm
DEFCON 201 Announcements
8:05pm — 8:20pm
Documenting The Digital Diaspora with AfroCROWD — Sherry Antione
8:20pm — 9:10pm
(Bio)Hacking as a Primary Response to Crisis — Meow
9:10pm — 9:30pm
psyc://The Protocol That Time Forgot — Sidepocket
9:30pm — ???
Open Workshops: DEFCON 201 Show & Tell + Games + Hangout
.::OPEN PROJECTS::.
DC201 Hacker Show & Tell— Everyone
Folding@Home VS Coronavirus (Team: 241960) — GI Jack, Everyone
Among Us — Everyone
.::LIGHTNING TALKS::.
PRE SHOW: Healthscare — An Insider’s Biopsy of Healthcare Application Security
:..>Our PRE-SHOW will a relevant talk from the Black Hat Webinar series!
Healthcare security teams are in a tough spot. While the provider industry is taking security seriously, they are at the mercy of the software vendors who provide the healthcare organizations with the data delivery, processing and storage solutions that are critical to delivering patient care and keeping patient data secure. Given the reliance on these systems, it begs the question — how secure are these solutions?
Seth Fogie has spent the last 10+ years in the trenches of the healthcare industry and has seen the good, bad and ugly of what is being provided to your providers. As an insider, Seth has experienced the unique tension healthcare security teams face as they work to securely implement these solutions and will share some of what has been found.
The core of this presentation will focus on vulnerabilities and design issues within healthcare solutions. As we will illustrate through the dissection of numerous clinical focused systems, including radiology reading, EMR downtime, patient entertainment, pharmacy distribution, nurse communication, M&A EMR, clinical documentation and temperature monitoring systems, the prognosis doesn’t look good. Unfortunately, it is our experience that there are few solutions within the hospital enterprise that do not have issues.
The goal for this public ‘biopsy’? The healthcare security community needs help increasing the pressure to ensure all of our data is safe from poorly designed and developed vendor solutions. While we can’t play the name and shame game for a number of reasons, we want to increase awareness through numerous technical illustrations and ask for your help in increasing scrutiny on all healthcare solutions. This isn’t just an application security problem — it is all our healthcare data at risk and this audience is positioned in a unique spot to help.
:..>Bio: Seth Fogie serves as the Information Security Director at Penn Medicine where he is a member of the leadership team helping to build and maintain a world class security program for the enterprise. In Seth’s 20 + years of experience in the field of security, he has also led a security software development company, served as CTO for a development firm focused on the creation of educational environments for hands-on security exercises, and has authored numerous books/articles on information security related subjects. In addition to Seth’s current role at Penn Medicine, he also enjoys opportunities to perform security research and testing, helping numerous healthcare vendors remediate and correct security deficiencies, making the healthcare industry safer for all!
:..>Bio: Guy Raz is a Sr. Systems Engineer at ExtraHop with previous experience as a Network Engineer and Solution Architect. In his role, Guy has developed a deep understanding of the challenges to meet the security, network and compliance requirements that are unique to healthcare organizations. Before joining the Systems Engineer team, Guy was one of the ExtraHop Solution Architects, responsible for conducting deep technical and business discovery sessions, assisting in troubleshooting and problem resolution during war-room and security/network investigations and developing strategies for acquiring high-value data from the wire; requiring in-depth technical understanding of L2-L7 networking principles.
Documenting The Digital Diaspora with AfroCROWD
:..>AfroCROWD has held monthly multilingual editathons in partnership with cultural institutions, galleries, libraries, archives, museums (GLAM) and many others including instituations at the United Nations. The organization has also worked with professors at educational institutions like New York University, The New School, Icahn Medical School and Columbia University among others. AfroCROWD also organizes events to train future trainers in its target community. In this talk, we will go over the mission statement for AfroCROWD, how wikipediathons are organized and the upcoming online Black Wiki History Month at the Schomburg Center.
:..>Bio: Run by Executive Director, Sherry Antoine, AfroCROWD has sensitized thousands in its target audience about free culture crowdsourcing and the need to close the multicultural and gender gaps in Wikipedia.
(Bio)Hacking as a Primary Response to Crisis
:..>During crisis we often see unique problems that governments and businesses struggle to tackle in an effective and timely fashion. Meow will explore how hackers can, and have, responded to this wit a focus on his work in molecular diagnostics during the covid-19 pandemic.
:..>Bio: Meow is a transdisciplinary biohacker that helped begin the movement in Australia. He embraces all five pillars of biohacking: micro, molecular bio, bioinformatics, hardware, and grinding. Notably, he has run in multiple federal elections as a pro-technology evangelist and was also the centre of one of the first cyborg law cases due to the use of a contraband travel pass inserted into his hand.
His main interests are astrobiology, fungi, life extension, gene therapies (including mRNA), cellular agriculture (plants > mammalian), little creatures (<1mm), complex living systems (aquaponics, aquariums, etc), and pneumatic conveying. At previous DEFCONs he has developed an appreciation for industrial control systems, social engineering, hardware hacking, and the broader implications of hacking as a societal movement.
psyc://The Protocol That Time Forgot
:..>psyc was a flexible protocol and control layer to set up a worldwide distributed messaging infrastructure for multicast chat, conferencing, non-proprietary instant messaging, distributed social networking and data sharing with no central database. Key word, was. A project by GNU that even most open source fanatics have forgotten about it only exists because once in awhile the Free Software Foundation likes to bring up their limbo SECUSHARE projects like the way Tupac releases a new album from beyond the grave. In this yammering digital archeological dig, we will dissect the protocol, look at some of it’s implementations including PsycZilla on Ubuntu “Karmatic Kola” and go down the rabbit hole of the most confusing and poorly managed projects since GNU Herd.
:.>Bio: A Co-Founder of DEFCON 201, an open group for hacker workshop projects in North East New Jersey, Sidepocket is constantly wanting to help people to get better at whatever they want to do and learn. He also has a history with NYC 2600, Radio Statler at Hackers on Planet Earth, Phone Losers of America, Museum of Urban Reclaim Spaces and The Yes Men. Find out more about DEFCON 201 at: http://www.defcon201.org
.::OPEN PROJECTS::.
DEFCON 201 Hacker Show & Tell
:..>After our lightning talks DEFCON 201 members will be given an opportunity to show off the various projects that they have been working on. You can join in any time as we chat and some things we might be showing off for the first time so you don’t want to miss this on the LIVE Stream!
To get the URL and Password for the group hang out, pay attention to our Twitter or sign up on Meet Up!
:..>What You’ll Need: If you want to get in on the action, just bring any hardware or software program you are working on. For hardware, make sure you have a camera with decent resolution. For software, make sure your screen sharing function is working. For interaction, make sure you have your microphone on your computer or headset in working order.
Folding@Home VS Coronavirus
:..>Folding@home (FAH or F@h) is a distributed computing project for simulating protein dynamics, including the process of protein folding and the movements of proteins implicated in a variety of diseases. Currently F@h is simulating the dynamics of COVID-19 proteins to hunt for new therapeutic opportunities. We want to contribute and you can help! Join the DEFCON 201 Folding@Home Team: 241960
:..>What You’ll Need: Download and run Folding@home for Windows/Mac/Linux/FreeBSD, ideally on your highest performance system with a GPU and join our F@h Team 241960: https://foldingathome.org/start-folding/
AMONG US
:..>During our stream, we will be playing the hit game Among Us with the DEF CON audience! Watch the stream to find out how to join.
Steam: https://store.steampowered.com/app/945360/Among_Us/
iOS: https://apps.apple.com/us/app/among-us/id1351168404
Android: https://play.google.com/store/apps/details?id=com.innersloth.spacemafia&hl=en_US&gl=US
The game takes place in a space-themed setting, in which players each take on one of two roles, most being Crewmates, and a predetermined number being Impostors. The goal of the Crewmates is to identify the Impostors, eliminate them, and complete tasks around the map; the Impostors’ goal is to covertly sabotage and kill the Crewmates before they complete all of their tasks. Players suspected to be Impostors may be eliminated via a plurality vote, which any player may initiate by calling an emergency meeting (except during a crisis) or reporting a dead body. Crewmates win if all Impostors are eliminated or all tasks are completed whereas Impostors win if there is an equal number of Impostors and Crewmates, or if a critical sabotage goes unresolved.
::END OF LINE::