What happened in Vegas (that you actually want to know about)
Essential information
- Published
- 14/08/2025 22:16
- Modified
- 15/08/2025 12:37
- Tags
- 2025-08-14 CVE-2025-6543 ai guardrails black hat usa c++ embedded security incident response malvertising powershell ps1bot
- Related entities
- 1 vulnerabilities (cve), 3 observables, 4 techniques (mitre), 1 malware, 6 others
Description
This article recaps key highlights from Black Hat USA, including Joe Marshall's live incident-response exercise using the Backdoors & Breaches card game, Amy Chang's research on bypassing AI guardrails through 'decomposition', and Philippe Laulheret's ReVault presentation on vulnerabilities in embedded security chips. The article also mentions a widespread malvertising campaign distributing 'PS1Bot', a multi-stage malware framework using PowerShell and C# modules to steal sensitive information. The report emphasizes the importance of caution when downloading files, keeping security software updated, and using dedicated password managers. It concludes with recent security headlines and upcoming events featuring Talos.