This will be the third time that we've had Congressman Jim Langevin come speak with us about issues he is working on with regard to information security and privacy. His is on the House Committee on Homeland Security and the Subcommittee on Cybersecurity and Infrastructure Protection and Subcommittee on Emergency Preparedness, Response and Communications. He also co-chairs the Congressional Cybersecurity Caucus.
Please join us on October 22nd to meet with Congressman Langevin and talk with him about current issues in cybersecurity and privacy. This meeting is free and open to all!
This meeting is sponsored by the RI Tech Collective.
With Michael Rossoni. Being a victim of ransomware is never fun, no matter how masochistic one may be. The recovery process should be as easy as restoring from backups and being back online within hours, but sometimes it isn't. When awesome security engineers and rock star IT professionals make up part of a small business, this recovery can require little effort. For a well established, large company, the process is more nuanced, especially when networking and infrastructure staff have ignored architecture changes suggested by information security over the years.
Come with us on a journey of one application security engineer and his efforts in helping a large company recover from ransomware apocalypse.
Mike's an electronics hobbyist, software hack, and certified application security professional (GWEB, CSSLP) who voids warranties and breaks things to figure out how to make them better. He's been in the software engineering business professionally in a variety of roles, including application security (secure SDLC, pen testing, etc.), network-enabled embedded systems development, QA, and full stack development for both on premise and SaaS based solutions. He also plays role of sysadmin when necessary.
• What we'll do
Posting this to both Meetup sites...I am organizing a first of its kind conference in RI, "Social Engineering RI" This is a one-day conference on June 16th, at Salve Regina University's Pell Center, with talks and activities focused on IT social engineering. Learning about phishing, vishing, pre-texting, physical bypasses and how to defend against these attacks. We will also have a panel with past winners of the Social Engineering CTF from DefCon and DerbyCon, to learn how they did it.
Tickets are required for this event, and are $50 each. Link below on where to buy them. Get more information at: http://se-ri.org
Tickets are available at: https://socialengri.eventbrite.com
• What to bring
• Important to know
Jason M. J.
O'Hare Academic Center
Ochre Point Avenue, Salve Regina College · Newport, RI
• What we'll do
Bring your toys! You have a 3D printer? Bring it! You have an RFID cloner? Bring it! You have WiFi antennas? Bring 'em! Let's show each other the tools you have and what kinds of things you like to do with them. We can spend the first 30 minutes setting up and then give everyone 5-10 mins to do a demo and then the rest of the time trying out each others stuff.
• What to bring
Your tools/toys! What do you like to work on, hack with or pull apart? Bring it!
• Important to know
Industrial Control Systems (ICS) have historically suffered from inadequate security practices, relying upon security through obscurity. With the proliferation of Ethernet connectivity on the plant floor and the conveniences of modern networking, existing problems have only grown more concerning. This presentation will cover a brief history of ICS and its components, why ICS assets must be protected differently than traditional IT assets, and best practices.
Bio - Stephen is an Electrical Engineer that has worked with Industrial Controls Systems for nearly 10 years in design, implementation, and field roles. He currently focuses his efforts on proper industrial networking and cyber security practices. Outside of work he splits his time between nerdy arts, the outdoors, and too many cats.
I'm super excited for this one. We will have Max Power from TOOOL (The Open Organization Of Lockpickers) come and show us how to pick locks! Even if you don't have a need to pick locks, it's still fun to look at them like puzzles, and who doesn't love figuring out puzzles?
You are not required to buy anything, Max will bring some locks and some picks that people can use, but he won't be able to bring enough for everyone to be practicing the whole time. We may have to work in pairs or small groups. If you just want to pick and play the whole time, you can buy your own sets. This is not mandatory, but if you have an interest in lockpicking, it's highly recommended. You can buy your supplies anywhere, but buyer beware with regard to quality. TOOOL sells high quality locks and picks, which you can buy here: http://toool.us/equipment.html The "Tremendous Twelve Toolkit" and "Progressive Picking - Basic" are great sets to start with. If you want to order, email [masked] and tell her it is for DC401.
If you already have lockpicks, bring 'em! If you have some locks you don't mind working on (warning: they could break), bring those too! If you have a small vice for circuit boards, that can be a big help too, and bring it!
Our space for this is limited to 25, so if you want to go, please RSVP. And if you do sign up and can't come, please update your response, so someone else can get in.
Here's some information about Max:
Max Power has been working in IT as a jack of all trades but with a fascination for risk and what trust is actually based in. Four years ago he dove straight into the Locksport: running the Boston TOOOL chapter, helping with the lockpick villages at major cons, and actively working in the community. When not at work or picking locks he can found trying to load as much weight as possible onto the bar, training for powerlifting competitions because nothing is more fun than not bending when the bar does.
See you on July 18th!
We're bringing back DC401! After speaking with Dave and Conrad, they agreed that we should bring the group back. We will have Tony Adams from Dell SecureWorks talk a little bit about election security, but we're also looking for other topics and people willing to share.
Currently, the meeting space is capped at 25, so please RSVP and keep it accurate. Let's get this going and see you there!