The annual Black Alps event returns to Yverdon-les-Bains on November 6 and 7, 2024. This gathering of Swiss and international cybersecurity experts offers a series of conferences and technical presentations on the latest trends in the sector. The event will be accompanied by a networking dinner and a "Catch The Flag" ethical hacking competition.
Conferences will cover a wide range of topics, focusing on the following themes:
Application security
Vulnerability scanning and exploit development
Pentest and red teaming
Cloud security
Safety automation
Network security
Intrusion detection and monitoring
Cryptography
And you'll have the opportunity to discover, among other things:
the impact of generative artificial intelligence (GenAI) in cybercrime. The conference will examine the growing use of deepfakes in fraud, the automation of phishing attacks, and the generation of malware by AI. The aim is to better distinguish real threats from exaggerations, by clarifying the differences between AI-generated, AI-assisted and AI-powered threats. The presentation will also address future research into zero-day vulnerabilities and supply chain attacks.
automated analysis of cryptographic protocols to improve their design and iterations. The talk will highlight the importance of rigorous analysis in the face of recently discovered vulnerabilities in applications such as Telegram and Threema. The presentation will also offer an industry overview of the impact of automated analysis on security audits and discuss its limitations, while reiterating the importance of collaboration to improve existing tools and cryptographic security.
The "GlobalConfusion" use case will examine a design weakness in the GlobalPlatform API used for Trusted Execution Environments (TEEs). This vulnerability generates bugs in Trusted Applications (TAs), enabling arbitrary read-write exploits. The researchers will present GPCheck, a static analysis tool developed to detect these flaws, which has enabled them to identify 14 0-day vulnerabilities. These vulnerabilities affect the security of mobile devices used by billions of users.