Top

Black Hat announces content lineup for Black Hat Europe 2024

Black Hat, the cybersecurity industry’s most established and in-depth security event series, today announced the release of its content lineup for Black Hat Europe 2024. The live, in-person event will take place at the ExCeL London from December 9 to December 12, and feature 41 Briefings hand selected by the Black Hat Europe Review Board, four days of Trainings, 25 Sponsored Sessions, and 64 in-person tool demos and three labs at Black Hat Arsenal.

On December 11 and December 12, attendees will gain insight into the latest in cybersecurity risks, developments, and trends through Briefings presentations.

Briefings highlights include:

SpAIware & More: Advanced Prompt Injection Exploits in LLM Applications – This talk will explore advanced prompt injection exploits targeting widely used large language model (LLM) applications. Researchers will also discuss mitigations and show how vendors are addressing vulnerabilities from each threat category.

SysBumps: Exploiting Speculative Execution in System Calls for Breaking KASLR in macOS for Apple Silicon – This talk will feature an in-depth security analysis of the latest Apple silicon-based macOS systems. Researchers will also introduce SysBumps, the first kernel address space layout randomization (KASLR) break attack on macOS for Apple silicon, as well as demonstrate how SysBumps leverages common vulnerabilities to break KASLR.

WorstFit: Unveiling Hidden Transformers in Windows ANSI! – This talk will examine the “Best Fit” feature in Windows as a critical risk to the Windows ecosystem. Researchers will also unveil a novel attack vector that exploits the “Best Fit” behavior to bypass the security mechanism, remount argument injection, and in certain scenarios, achieve arbitrary code execution.

Two- and four-day Trainings will take place from December 9 to December 12, and feature a variety of in-person and virtual courses in pentesting, industrial control systems (ICS), defense, computer forensics, and more.

Trainings highlights include:

Assessing and Exploiting Control Systems and IIoT [4105]

Fundamentals of Cyber Investigations and Human Intelligence [2111]

Attacking DevOps Pipelines [2108]

Offensive Mobile Reversing and Exploitation [4108]

Advanced Cloud Incident Response in Azure and Microsoft 365 [2103]

Business Hall passes, or Business passes, are currently available for the 2024 event. The Business Hall showcases the latest products and technologies from leading cybersecurity solution providers and will take place on December 11 and December 12. Business passes provide access to the Keynotes, Arsenal, Sponsored Sessions, Bricks & Picks, and more. All Black Hat Europe 2024 pass holders will have access to the Business Hall.

This year’s Black Hat Arsenal at Black Hat Europe will take place on December 11 and December 12. Black Hat Arsenal brings together researchers and the cybersecurity community to showcase and demonstrate their latest open-source tools and products in a conversational environment where presenters can interact with the attendees. This year’s event will feature 64 in-person tool demos and three labs, spanning exploitation and ethical hacking, reverse engineering, industrial security, malware offense, and more.

Black Hat Arsenal at Black Hat Europe 2024 tool demo highlights include:

Campus as a Living Lab: An Open-World Hacking Environment

Pandora: Exploit Password Management Software To Obtain Credential From Memory

Morion – A Tool for Experimenting with Symbolic Execution on Real-World Binaries

For registration and additional information on Black Hat Europe 2024, please visit www.blackhat.com/eu-24.

Top Sponsors and Partners of Black Hat Europe 2024 include:

Diamond Sponsors: Appdome, KnowBe4, Snyk, ThreatLocker, and Upwind Security.

Platinum Sponsors: Black Duck, GitHub, and Mend.

Sustaining Partners: Akamai, Armis, Axonius, Cisco, CrowdStrike, Fortinet, KnowBe4, ManageEngine, Microsoft, Pentera, Proofpoint, Qualys, ReliaQuest, SentinelOne, Snyk, Sophos, Sysdig, ThreatLocker, Trend Micro, Wiz, and Zscaler.

Global Partners: Adaptive Shield, Corellium, HackerOne, Snyk, Swimlane, and Sysdig.