<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body bgcolor="#FFFFFF" text="#000000">
So I just got back from Ekoparty, in Argentina. Ekoparty has great
technical content - much of which I listened to through a translator
service they had (which was surprisingly effective). Of course,
sometimes the interesting talks are not technical at all (and,
luckily for me, in English), as is the case with <a
href="http://www.slideshare.net/grugq/opsec-for-hackers">Grugq's
OPSEC for Hackers</a> talk. <br>
<br>
There are a lot of things I don't agree with in his talk, of course.
I have <a href="http://www.countermeasure2012.com/">this talk
coming up in Ottowa </a>in October in which I talk about this a
little bit, in particular the part where Grugq postulates that
hackers are not the apex predator on the Internet (which I assume is
classic misdirection on his part?)[1].<br>
<br>
My only request for the next Ekoparty is that they should have
coffee ALL DAY LONG. The never-ending coffee pot is one of those
amazing inventions first seen at <a
href="http://www.infiltratecon.com">INFILTRATE</a> but which I
hope will spread. :><br>
<br>
-dave<br>
<br>
[1] I also don't agree that you should work alone, and my opinion is
that you should log everything. But the "break down what lulzsec did
wrong" is a very useful task to take (and one I think he should
expand on at length in a post here, perhaps). Perhaps comparing it
to the <a
href="http://www.securelist.com/en/blog/750/Full_Analysis_of_Flame_s_Command_Control_servers">Flame
team</a> would be useful? In the end, a study of cyber-OPSEC will
eventually lead to people creating a useful Doctrine to govern this
sort of thing, which (imho) would demonstrate the underlying
strategy that covers <a
href="http://seclists.org/dailydave/2012/q2/39">this RSA talk</a>.<br>
<pre class="moz-signature" cols="72">--
INFILTRATE - the world's best offensive information security conference.
April 2013 in Miami Beach
<a class="moz-txt-link-abbreviated" href="http://www.infiltratecon.com">www.infiltratecon.com</a>
</pre>
</body>
</html>