Vista and Vigilance

Halvar Flake, Sabre Security    I have been told that I can write a blog entry for the BlueHat blog, with little or no editing, and now I sit here and have to make up something interesting to write about. I have a bit of a writers block today, caused by being tired, jetlagged, and…

11

BlueHat: Community Outreach

Katie Moussouris here.  I’m the newest Security Strategist here at Microsoft.  I was brought in by Sarah Blankinship to contribute to the work of the MSRC Security Community Outreach Team.  I work in the group that is responsible for securing current and future Microsoft products.  My background is application security, having come from Symantec by…


Welcome to the BlueHat blog site!

BlueHat 3 just completed last week, and all I can say is WOW.  Great speakers.  Great presentations.  Packed audience.  You can read the session abstracts and speaker bios here to see what I’m talking about.   OH!  I should introduce myself.  Where are my manners?  I’m Kymberlee Price, a Security Program Manager at Microsoft.  The organizational taxonomy of where…

5

David Litchfield’s BlueHat talk

Brad Sarsfield here again. I’d like to share with you my thoughts on David Litchfield’s BlueHatv3 talk.  David Litchfield is the Chief Research Scientist at Next Generation Security Software (NGS) and spoke to a 600+ standing room only crowd at Bluehat 3 on March 9th. David took us through his thoughts on the current state…

4

Microsoft, Mobile, and Security

Ollie WhitehouseArchitect, Advanced Threat Research, Symantec  Corporation   So if you had told me that one day I would be invited to Microsoft to talk about a subject I’ve now been involved in researching on and off for over six years and something I must say that has burned in my belly with passion for…

2

Bluehat v3 first thoughts

Hi, I’m Brad Sarsfield (bradsa!); I’m the SQL guy here. One of the interesting things about me and my team is that I own the ‘slammer’ component in SQL Server, so by that very nature quite a large part of my job description is to ensure (and I quote) “that never … ever … happens…

2

Announcing: BlueHat v6!

Andrew Cushman here. BlueHat is back in Redmond, as BlueHat v6: The Vuln Behind The Curtain opens September 27th and 28th. Once again we have two days of great security content that covers the spectrum of issues in security. The BlueHat speakers, both leading external security researchers and internal Microsoft engineers, will pierce the security…

2

Defend the Flag: Roguery Abounds!

Handle:k8e IRL: Katie Moussouris Rank: Senior Security Program Manager Likes: Cool vulns (responsibly disclosed of course), girls with soldering irons, Spanish tapas, quantum teleportation Dislikes: Rudeness, socks-n-sandals, licorice The air was thick with adrenaline and action as the teams battled each other for the top spot at Microsoft’s Defend the Flag (DTF) training at Black…

2

BlueHat v5: The Paradox of Innovation

BlueHat is Microsoft’s own little hacker con. We host it twice a year — the sessions today were all about innovation in security research.   What did we learn? That Microsoft cannot solve the security problem, but we can raise the bar substantially to the point where finding bugs in Microsoft products is hard, and building…


Where can you learn more?

The BlueHat team has been getting a lot of questions from both inside and outside of Microsoft asking if we are going to publicly post video or audio recordings of the BlueHat presentations, or if we are going to hoard the BlueHatty goodness and keep the presentation details all to ourselves…  A totally valid question…

2