Press "Enter" to skip to content

Uncle Sam wants hackers to help it bolster US national security

Uncle Sam was in plain sight at this year’s iteration of the massive “hacker” gathering known as DEF CON, in effect holding a “we love hacking” sign with the subtlety of a Vegas marquee.

The annual tech event, which drew more than 30,000 people to Sin City this year according to organizers, has long been a target for domestic intelligence and law enforcement agencies, according to reported FBI documents. Organizers have told of alleged foreign spies posing as documentary crews and trying to blend in with the DEF CON crowd.

But this year’s event saw an increased presence of DC lawmakers, most of whom were extending obvious olive branches, if not pleading for hackers’ help. And they seemed to be mostly well-received.

“White-hat hackers are absolutely irreplaceable in the technological age,” Senator Ron Wyden, D-Oregon, told an audience of hundreds, which erupted into thunderous applause at that and many other moments during his remarks.

US EYES RANSOMWARE THREAT TO VOTER DATABASES PRIOR TO 2020 ELECTION

next Image 1 of 20

An attendee at the DEF CON 27 Hacking Conference in Las Vegas listens to a panel discussion featuring conference founder Jeff Moss, aka Dark Tangent, and Christopher Krebs, the current and first director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA). (Alex Diaz/Fox News)

prev next Image 2 of 20

Lock-picking a ballot machine used in previous U.S. elections at the DEF CON 27 Hacking Conference “Voting Village.” (Alex Diaz/Fox News)

prev next Image 3 of 20

A panel at the DEF CON 27 Hacking Conference in Las Vegas featuring founder Jeff Moss, aka Dark Tangent, and Christopher Krebs, aka the current and first director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA). (Alex Diaz/Fox News)

prev next Image 4 of 20

Scenes from DEF CON 27 Hacking Conference in Las Vegas. (Alex Diaz/Fox News)

prev next Image 5 of 20

From L to R: Rep. Jim Langevin (D-RI), fmr Rep. Jane Harman (D-CA), Rep. Ted Lieu (D-CA) were speakers at the DEF CON 27 Hacking Conference in Las Vegas. (Alex Diaz/Fox News)

prev next Image 6 of 20

Senator Ron Wyden, D-Oregon, spoke to a packed and enthusiastic audience at the DEF CON 27 Hacking Conference in Las Vegas. (Alex Diaz/Fox News)

prev next Image 7 of 20

Ben Dubow and Evanna Hu of threat assessment company Omelas describe the ways that Russia has used an obvious tool – its Youtube channel – as a way to spread information on a massive scale. (Alex Diaz/Fox News)

prev next Image 8 of 20

An attendee at the DEF CON 27 Hacking Conference in Las Vegas shows off a bedazzled hard hat that doubles as a functional RC car. (Alex Diaz/Fox News)

prev next Image 9 of 20

The “Bomb Defusal Challenge” at the DEF CON 27 Hacking Conference was a crowd-pleaser, with comic book puns aplenty. (Alex Diaz/Fox News)

prev next Image 10 of 20

Would a “Bomb Defusal Challenge” at the DEF CON Hacking Conference be complete without a visit from the comic-book super-villain, Bane? (Alex Diaz/Fox News)

prev next Image 11 of 20

Some of the tools being used at the DEF CON 27 Hacking Conference “Bomb Defusal Challenge.” (Alex Diaz/Fox News)

prev next Image 12 of 20

At the DEF CON 27 Hacking Conference in Las Vegas, attendees can try their hand at “social engineering” competitions, in which participants are tested on a variety of skills including lock-picking, deception and physical security evasion. (Alex Diaz/Fox News)

prev next Image 13 of 20

Official DEF CON badges are puzzles unto themselves, and this year’s version encouraged attendees to “interact” with other badges in order to complete challenges. (Alex Diaz/Fox News)

prev next Image 14 of 20

An Ohio-based DEF CON attendee shows off his homemade badge, complete with audio samples of dial-up internet. (Alex Diaz/Fox News)

prev next Image 15 of 20

Privacy is paramount at a gathering like DEF CON, where taking photos of attendees is only permitted with their express consent.  (Alex Diaz/Fox News)

prev next Image 16 of 20

A mock TSA luggage inspection ticket at the DEF CON 27 Hacking Conference in Las Vegas. (Alex Diaz/Fox News)

prev next Image 17 of 20

A mock hospital suite, complete with the systems that control it, await those who might want to tinker with it at the DEF CON 27 Hacking Conference “Biohacking Village,” which focuses on vulnerabilities in medical devices. (Alex Diaz/Fox News)

prev next Image 18 of 20

“Capture The Flag” is an event at the DEF CON 27 Hacking Conference that pits “teams” of hackers against each other in a digital version of the game by the same name. (Alex Diaz/Fox News)

prev next Image 19 of 20

A prototype for a new type of voting/ballot system on display at the DEF CON 27 Hacking Conference “Voting Village.” While the real thing is a long way off, the company partnering with the DoD on this project hopes to combine paper ballots with modern-day tech. (Alex Diaz/Fox News)

prev Image 20 of 20

Even and especially at a conference full of hackers, rules are meant to be followed. (Alex Diaz/Fox News)

“If we don’t work now to translate between the traditional silos of our two communities, then we will miss opportunities,” declared former Rep. Jane Harman, D-Calif. Harman advertised herself in the DEF CON schedule with an apparent internet alias, “Surfer Jane.” Her panel discussion included two current members of Congress, one of them a “DEF CON repeater” (Rep. Jim Langevin, D-R.I.) and the other a computer science degree holder (Rep. Ted Lieu, D-Calif.).

Next to the current and former lawmakers were two hackers-turned-security experts, one of whom testified before Congress in the late ‘90s using his alias, “Space Rogue.”

Wyden conceded that hackers “don’t hear people with election certificates say ‘thank you’ often, if at all.” But the growth of DEF CON, now in its 27th year, and the collaborations it has inspired are readily apparent outside the convention halls.

ELECTION MACHINE KEYS ARE ON THE INTERNET, HACKERS SAY

I previously reported that DEF CON’s “Voting Village,” a corner of the conference where election hacking is the name of the game, was attended this year by U.S. lawmakers, more than a dozen Congressional aides from both sides of the aisle, state and local election officials, and some companies that are already working on technology for DARPA, the DoD’s Advanced Research Projects Agency. The relationship between Washington and so-called “white hat” hackers has addressed concerns that go well beyond more than just election security, though.

Representatives from the FDA, also in attendance at this year’s DEF CON, have been working for years with the grassroots hacktivist group “I Am The Cavalry” that helped organize the “Biohacking Village,” an area that focuses on the vulnerabilities of medical devices, among other DEF CON attractions. The agency helped the group exponentially grow the number of devices on-hand for experimentation this year, and it seems to be a two-way street.

“Forums like DEF CON, because of the presence of researchers, hackers, manufacturers, clinicians, patients… really fosters the kind of dialogue, and that sense of collaboration, of needing to work together towards a common goal, that is hard to find in other places,” one FDA representative told Fox News.

TURN OFF YOUR BLUETOOTH, WARN SECURITY EXPERTS

Another popular corner of the DEF CON experience is called “r00tz Asylum,” where children can learn everything from lock-picking (an essential skill for modern-day security consultants) to digital hacking of simulated government websites. And this is yet another area where the U.S. government appears to be playing a big role behind the scenes.

Nico Sell, co-chair of Workforce Acceleration for the Trump administration’s CSI Cyberpolicy Committee, is a r00tz Asylum organizer. She admits the key to convincing children to get into the field of cybersecurity, and thus boost the U.S. cyber workforce (which is her primary goal), is to make the curriculum seem more “cool.”

next Image 1 of 6

One of the many ways organizers of the DEF CON 27 Hacking Conference kids area, known as “r00tz Asylum,” tried to entice younger generations to get into the field of digital security. (Alex Diaz/Fox News)

prev next Image 2 of 6

A simulated campaign contributions website is hacked by children at the DEF CON 27 Hacking Conference “r00tz Asylym” kids area in Las Vegas. The simulated website was hacked to reveal a deep-pocket donor named “spaghetti.”

prev next Image 3 of 6

Tiny hands picking tiny locks at the DEF CON 27 Hacking Conference “r00tz Asylum” kids area. (Alex Diaz/Fox News)

prev next Image 4 of 6

Custom badges at the DEF CON 27 Hacking Conference “r00tz Asylum” kids area. (Alex Diaz/Fox News)

prev next Image 5 of 6

Forget LEGO, “Snap Circuits” are the toys of choice at the DEF CON 27 Hacking Conference “r00tz Asylum” kids area. (Alex Diaz/Fox News)

prev Image 6 of 6

A sign at the entrance to the DEF CON 27 Hacking Conference “r00tz Asylum” kids area. (Alex Diaz/Fox News)

Sell tells Fox that instead of spreading the gospel of “security” among young students, she told the administration that “we need to teach kids hacking. That’s how we’re going to solve the workforce acceleration problem.”

RANSOMWARE IS A ‘BEST SELLER’ ON UNDERGROUND HACKER FORUMS

Aside from the lawmakers seated onstage next to world-famous hackers, another obvious sign of the growing effort to increase the symbiosis between the two communities was the last-minute arrangement of a 9 a.m. panel talk on the first full day of DEF CON this year.

“#DEFCON Wants to Help Hackers Anonymously Submit Bugs to the Government: Let’s Discuss” featured the likes of  Moss and Krebs.

“White-hat hackers are absolutely irreplaceable in the technological age.”

— Sen. Ron Wyden, D-Oregon, at the DEF CON 27 Hacking Convention

“Thanks for getting up, we’ve never done one of these this early before,” Moss said to a bedraggled but surprisingly large early-morning crowd.  “Those of you in the audience with the Twitters and the Facebook, can you maybe announce that this thing is starting so we can get more people here? We are really hoping to have a community question and answer session later on,” he added.

The crowd eventually filled out to at least a few hundred people, and Krebs seemed eager to sell the benefits of working with his agency to a crowd that could clearly help his efforts, while trying to figure out why there is still some reluctance among hackers to do so. There were even some DHS folks at the conference with a full table set up for recruitment.

“We are the advocate within the government for the researcher community, the private sector, kind of ‘team internet,'” Krebs said. “There are still clearly… some that still have reluctance to engage with the government,” he admitted. “So what are the impediments or challenges that the community sees?” he asked.

To be sure, an annual gathering of hackers this large has caught the eye of law enforcement once or twice. And the FBI has reportedly bristled in the past at descriptions of the fabled DEF CON “Spot The Fed” contest, in which attendees could win a t-shirt if they spot someone in the crowd that is decided to be a member of a federal agency.

Not everyone at DEF CON has been supportive of the increasing government involvement at their beloved conference. In 2012, Moss (the founder) even asked the feds to take a “time out” on attending DEF CON that year due to the unfolding controversy over Edward Snowden. Intelligence & law enforcement agencies have generally been welcomed at DEF CON throughout its history, and even during the 2012 “time out’ from DEF CON, they were still welcomed at other related security events like Blackhat.

And what becomes clear to anyone who has ever attended DEF CON, civilian or otherwise, is the idea that fixing problems together is truly the driving force.

CLICK HERE TO GET THE FOX NEWS APP

“DEF CON is about building community,” Moss told this year’s crowd. “And I’m always looking for another opportunity to either build bridges, build relationships, or solve problems,” he added.

Got a tip for me, DEF CON-related or otherwise? Send me a DM on Twitter, @_gonzoAD, or find me on Signal – alexdiaz36.

SOURCE : https://www.foxnews.com/tech/uncle-sam-wants-hackers-national-security

Be First to Comment

Leave a Reply

Your email address will not be published.