Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Microsoft goes public with Blue Hat hacker conference

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Microsoft goes public with Blue Hat hacker conference
Date: Fri, 17 Mar 2006 02:35:39 -0600 (CST) 
http://www.computerworld.com/securitytopics/security/story/0,10801,109606,00.html

By Robert McMillan
MARCH 16, 2006
IDG NEWS SERVICE

Microsoft Corp. is going public with some of the hacking information
discussed at its Blue Hat Security Briefings event. Just days after
the end of its third Blue Hat conference, the software vendor today
posted the first blog entries at a new Web site. Microsoft is also
promising to publish more details on the secretive invitation-only
event.

The Web site will include Microsoft staffer's "reflections on BlueHat
3" as well as photos, podcasts and video interviews with some of the
presenters, said Security Program Manager Kymberlee Price in a blog
posting. "We sincerely hope that our BlueHat 3 speakers (and BlueHat 1
& 2 speakers) will post their comments to the site as well and share
their BlueHat experience," she wrote.

Presentations given during the latest conference, held last week on
Microsoft's campus in Redmond, Wash., covered topics such as
"exploiting Web applications" and "breaking into database systems,"  
according to the Web site.

Microsoft started the Blue Hat briefings a year ago to begin a
dialogue between the company's security team and external security
researchers, many of whom have been critical of the company's approach
to security. A handful of outside security researchers spent a few
days at Blue Hat discussing Microsoft's security vulnerabilities with
several hundred of the company's engineers and executives.

There were more than 650 attendees at Blue Hat 3, which was also
broadcast to Microsoft employees worldwide, according to Alexander
Kornbrust, a business director at Red-Database-Security GmbH in
Neunkirchen, Germany, who attended the event.

One Microsoft blogger praised the open dialogue at the event.

"Everything was fair game," wrote SQL Server engineer Brad Sarsfield
in a blog posting. "Hearing senior executives say things like, 'I want
the people responsible for those features in my office early next
week; I want to get to the bottom of this' was at least one measure of
success from my point of view for the event."

The Blue Hat name is a play on the Black Hat conferences, which have
occasionally been criticized by IT vendors. The "blue" part comes from
the color of badges that Microsoft staffers wear on campus.

Last year, Black Hat organizers were sued by Cisco Systems Inc. after
a conference presenter disclosed vulnerabilities in the company's
Internetworking Operating System router software. That lawsuit was
eventually settled with Black Hat agreeing not to further disseminate
the presentation.

Microsoft's site will not have the kind of controversial material that
has popped up at Black Hat. "All researchers at the BlueHat are
responsible," Kornbrust said.



_________________________________
InfoSec News v2.0 - Coming Soon! 
http://www.infosecnews.org
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Microsoft goes public with Blue Hat hacker conference, InfoSec News <=
Previous by Date:  [ISN] Security flaws could cripple missile defense network, InfoSec News
Next by Date:  [ISN] Linux Advisory Watch - March 17th 2006, InfoSec News
Previous by Thread:  [ISN] Security flaws could cripple missile defense network, InfoSec News
Next by Thread:  [ISN] Linux Advisory Watch - March 17th 2006, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]