Black Alps 24

Conferences will cover a wide range of topics, focusing on the following themes:

• Application security
• Vulnerability scanning and exploit development
• Pentest and red teaming
• Cloud security
• Safety automation
• Network security
• Intrusion detection and monitoring
• Cryptography

And you'll have the opportunity to discover, among other things:

• the impact of generative artificial intelligence (GenAI) in cybercrime. The conference will examine the growing use of deepfakes in fraud, the automation of phishing attacks, and the generation of malware by AI. The aim is to better distinguish real threats from exaggerations, by clarifying the differences between AI-generated, AI-assisted and AI-powered threats. The presentation will also address future research into zero-day vulnerabilities and supply chain attacks.
• automated analysis of cryptographic protocols to improve their design and iterations. The talk will highlight the importance of rigorous analysis in the face of recently discovered vulnerabilities in applications such as Telegram and Threema. The presentation will also offer an industry overview of the impact of automated analysis on security audits and discuss its limitations, while reiterating the importance of collaboration to improve existing tools and cryptographic security.
• The "GlobalConfusion" use case will examine a design weakness in the GlobalPlatform API used for Trusted Execution Environments (TEEs). This vulnerability generates bugs in Trusted Applications (TAs), enabling arbitrary read-write exploits. The researchers will present GPCheck, a static analysis tool developed to detect these flaws, which has enabled them to identify 14 0-day vulnerabilities. These vulnerabilities affect the security of mobile devices used by billions of users.

Details & online registration.