Artificial Intelligence

How to connect with Microsoft Security at Black Hat USA 2023


Now in its twenty-sixth year, Black Hat USA takes place August 5 to 10, 2023, at Mandalay Bay in Las Vegas, Nevada, bringing together security professionals for the latest in information security research, development, and trends. Microsoft Security is pleased to have a presence at Black Hat, with exciting sessions, product demos and meetings at our booth, and a customer happy hour—all designed to inform and engage attendees with the latest thought leadership, trends, and news related to threat protection. We hope you’ll join us, and read on to learn more about what we’re bringing to Black Hat.

Connect with Microsoft security experts at Black Hat

Be sure to stop by the Microsoft Security booth number 1740 to view our Microsoft Threat Intelligence Interactive Experience, view product demonstrations in our mini-theater, and chat with Microsoft representatives about your company’s priorities and how Microsoft Security can help you defend against threats across all endpoints and clouds. Product demonstrations will cover cloud security, threat protection products including Microsoft Security Copilot, Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft 365 Defender, Microsoft Defender for IoT, Azure Network Security (Microsoft Azure DDoS Protection, Web Application Firewall, Microsoft Azure Firewall), threat intelligence including Microsoft Defender Threat Intelligence, and Microsoft Entra. You’ll also be able to connect with our Microsoft Intelligent Security Association (MISA) partners during your visit. These are top experts from across the cybersecurity industry with the shared goal of improving customer security.

Two people having a conversation at the Microsoft Security Booth at Black Hat Conference 2022.

This year at Black Hat USA, we’re excited to have a mini-theater right in our booth to share the latest thought leadership, trends, and product innovations. These are a few highlighted sessions:

SESSION TITLE SPEAKER
Automating Threat Hunting with MDTI—Revealing Threat Infrastructure at Scale Geoff Roote, Senior Security Specialist, Microsoft
Microsoft Security Copilot Ryan Munsch, Principal Solution Specialist, Microsoft
Simplify your defense against threats with Microsoft Sentinel Benjamin Powell, Senior Product Marketing Manager, Microsoft
Introducing the Microsoft Incident Response Retainer Rani Lofstrom, Director, Security Incubations, Microsoft
Unify cloud security protections with Microsoft Defender for Cloud, Microsoft’s comprehensive cloud-native application protection platform Thomas Zou, Product Marketing Manager, Microsoft
Microsoft Bug Bounty Program Madeline Eckert, Senior Program Manager, Microsoft
Disrupt advanced attacks at machine speed with Microsoft XDR Ori Perez, Principal Security Researcher, Microsoft

See the full schedule of sessions presented in our mini-theater.

Our mini-theater will also feature sessions by members of MISA including Red Canary, Quorum Cyber, Ontinue, PwC, Synack, and Vectra AI. See the full MISA schedule.

On Wednesday, August 9, 2023, from 6 PM PT to 8 PM PT at Lupo by Wolfgang Puck, we’ll be connecting and networking with fellow industry experts at our exclusive customer happy hour; drinks and appetizers will be provided. The event will be co-hosted by Kelly Bissell, Corporate Vice President, Microsoft Security, and Aanchal Gupta, Corporate Vice President and Deputy Chief Information Security Officer (CISO), Microsoft Security. This customer happy hour is made possible by event sponsors Red Canary, Quorum Cyber, Ontinue, PwC, and Synack.

Microsoft Security sessions on AI, threat protection, and more

Microsoft Security delivers one of the most comprehensive solutions to help you defend against threats across all endpoints and clouds. To that end, at this year’s Black Hat, we’re presenting unique AI and threat protection sessions.

  • AI: Defending at machine speed with Microsoft Security—Scott Woodgate, Senior Director of Security Marketing, will discuss how Microsoft is applying AI and machine learning to disrupt attackers’ traditional advantages, adapt to their new techniques, and combat the growing scale of the industrialization of cybercrime. See how Microsoft extended detection and response (XDR) can automatically disrupt in-progress attacks, how Security Copilot will help simplify security operations center (SOC) investigations, and more. Wednesday, August 9, 2023, from 11:30 AM PT to 11:50 AM PT.
  • Risks of AI Risk Policy: Five Lessons—Ram Shankar Siva Kumar, Data Cowboy, Microsoft, and Jonathan Penney, Associate Professor, Osgoode Hall Law School, will talk about the rapid proliferation of AI Risk Management standards and frameworks (21 and growing). We’ll show how two popular AI Risk Management frameworks lack actionable security guidance, are too vague, and fail to account for civil liberties implications. Learn how to create standards that work and unblock machine learning engineers and security professionals deploying AI. , August 9, 2023, from 11:20 AM PT to 11:40 AM PT.
  • dr1v3by! Broken 802.11 Wifi Driver Leads to Millions of Vulnerable Cars—Omri Ben Bassat, Security Researcher, Microsoft, presents a technical deep dive into 0-day remote code execution (RCE) vulnerability found in legacy proprietary SoftMAC Wi-Fi driver, which is integrated into a popular infotainment system affecting millions of cars. Wednesday, August 9, 2023, from 1:30 PM PT to 2:10 PM PT.
  • ICS Forensics Tools—Ori Perez and Maayan Shaul, Senior Security Researcher, Microsoft, will announce two new tools in the ICS Forensics Tools arsenal, the open-source forensic toolkit for analyzing industrial programmable logic controller (PLC) metadata and project files. Tools will be available for immediate use right before the session begins. Thursday, August 10, 2023, from 1:00 PM PT to 2:30 PM PT.
  • A SSLippery Slope: Unraveling the Hidden Dangers of Certificate Misuse—Bill Demirkapi, Security Engineer, Microsoft Security Response Center, discusses systemic vulnerability uncovered in numerous signature validation implementations which allows attackers to exploit valid certificates in an unintended manner. Wednesday, August 9, 2023, from 3:20 PM PT to 4:00 PM PT.
  • CoDe16; 16 Zero-Day Vulnerabilities Affecting CODESYS Framework Leading to Remote Code Execution on Millions of Industrial Devices Across Industries​—Vladimir Eliezer Tokarev, Security Researcher, Microsoft, presents 16 zero-day vulnerabilities found in CODESYS—a platform-independent software framework used for programming PLCs. Thursday, August 10, 2023, from 4:20 PM PT to 5:00 PM PT.
  • Second Breakfast: Implicit and Mutation-Based Serialization Vulnerabilities in .NET—Jonathan Birch, Principal Software Security Engineer, Microsoft, discusses novel attacks against .NET serialization that bypass current state-of-the-art mitigations and violate typical assumptions regarding serializer security. Wednesday, August 9, 2023, from 2:30 PM PT to 3:00 PM PT.
  • Blue Teaming For Your Mental Health—There’s no question that any role within the cyber security industry is mentally taxing. Sarah Young, Senior Cloud Security Advocate, Microsoft, will share how she learned to manage her mental health whilst coping with exacerbating factors from one of her previous cyber security jobs. Thursday, August 10, 2023, from 2:00 PM PT to 2:40 PM PT.

Celebrating the security community together

On Thursday, August 10, 2023, we will host our researcher community for an invite-only Microsoft Researcher Celebration. Our security team is looking forward to meeting and talking with our peers from across the industry as we celebrate our close partnerships to keep the world safe. As always, we celebrate the diverse community of security researchers who work with our team every day.

Attendees at a Microsoft networking event.

At Microsoft, we believe in the transformative power of engaging many different perspectives. Different perspectives help us all to achieve more, and we’re committed to leveraging our global influence to drive positive change. This year, we’re excited to be a Signature sponsor of the Cybersecurity Woman of the Year Awards Gala in Las Vegas, on August 8, 2023, at the Luxor hotel.

If you can, stick around after Black Hat for SquadCon. Happening nearby and taking place right after Black Hat, our Microsoft Security Response Center is excited to sponsor SquadCon, the reimagined cybersecurity conference where inclusivity is a core concept. Brought to you by BlackGirlsHack and powered by Girls Hack Village, SquadCon takes place August 10 to 12, 2023, at the Industrial event space in Las Vegas. View the event page to learn more and get your tickets.

Lastly, we’re excited to share the latest product news and Microsoft Security innovations during Black Hat. Stay tuned for more information. We hope to see you at the conference. Have questions? Visit us at exhibition booth number 1740 and sign up for a time to chat.

In the meantime, explore resources to continue your learning on defending against threats with Microsoft Security.

Learn more

To learn more about Microsoft Security solutions, visit our website. Bookmark the Security blog to keep up with our expert coverage on security matters. Also, follow us on LinkedIn (Microsoft Security) and Twitter (@MSFTSecurity) for the latest news and updates on cybersecurity.