Cybersecurity Leaders Discuss AI, Vulnerabilities, and Global Surveillance at Black Hat Sector Conference

The Black Hat Sector conference panel discussion featured cybersecurity leaders from Quick Intelligence, a SaaS incident response team, the Government of Ontario, Well Simple, and other organizations reflecting on key themes from the event. Highlights included AI’s pervasive role in security, with concerns about its hallucinations, over-reliance in coding, and exploitation by nation-state actors for job fraud and deepfake attacks. Technical discussions covered vulnerabilities in Outlook (zero-click RCEs), outdated government software (60,000 unmanaged subdomains), and physical security risks like RFID exploits and maglock bypasses. The panel noted persistent issues like low MFA adoption (33% of companies lack it) and poor asset management, despite tools like Sentinel One and CrowdStrike. A case study revealed AI-generated resumes and fabricated penetration test results, while Citizen Lab’s talk on global surveillance and dashcam data exfiltration stood out. The event also saw increased international attendance (10% non-Canadian) due to geopolitical shifts.