Meeting: 2018.01.31 Written by thehask on January 25, 2018

Happy New Year!

Our first meeting of 2018! Time really does go by quickly when you are having fun. The board and I are very pleased with the attendance and growth of HASK and we have plenty of exciting things planned for this year.

I am very pleased to announce that GoSecure is this month’s meeting sponsor, and wow do we have a presentation for you! Our very own Martin Lemay whom is credited with CVE-2017-4946 (VMware Horizon Privilege Escalation) will be presenting on his research and the exploit in detail.

Planning is well underway for AtlSecCon in April and the new convention centre is finally ready for us. This space is nothing short of amazing and we are really looking forward to sharing the great content our selected speakers have prepared. Round two of the call for papers (CFP) is currently open and interested parties can submit via the site at https://atlseccon.com/cfp . You definitely will not want to miss this one, tickets can be purchased online at the site.

Be seeing you,
Travis and the AtlSecCon Board.

January Meeting Sponsor:


Established in Montreal in 2002, GoSecure’s mission is to provide services and technology that enable organizations to manage cyber risk and implement balanced cybersecurity controls. By offering innovative services and by focusing on quality, respect and integrity, GoSecure has built strong relationships as a key supplier for organizations and businesses of all sizes.

Venue:

Historic Properties
1887 Upper Water St
3rd Floor (Above Lower Deck)
Halifax, NS

Agenda:

6:00 – 7:00 pm  Complimentary apps and drinks from our meeting sponsor GoSecure
7:15 – 8:15 pm  Martin Lemay – VMware Horizon desktop agent privilege escalation vulnerability (CVE-2017-4946)
8:30 – 9:00 pm  Community Talk – Bitcoin Barons!

Sponsored Presentation:


VMware Horizon desktop agent privilege escalation vulnerability (CVE-2017-4946)
As virtualization technology continues to become the corporate standard, the popularity of Virtual Desktop Infrastructure (VDI) in large enterprises has been increasing. These automated environments can provision desktops and applications from the internal and external network on top of virtualization technology without an IT administrator’s input. The goal of this presentation is to deliver some background as well as technical details on the CVE-2017-4946 vulnerability.

Community talk:
Bitcoin Barons! – Mike Brunt, Evan d’Entremont, Julien Savoie, Jamie Fifield: Lightning talks and panel discussion on Cryptocurrency. Covered will be a series of short talks on various aspects of cryptocurrency including the technical side, the legislative side, and how you can use it in real life. Afterwards we will have a moderated roundtable discussion to answer questions from the crowd.