Conferences, Gender Issues

DEFCON unLocked !

August 19, 2014

women computers geek hacking badges hack defcon hacking conference_www.wall321.com_92
To start by saying that I’m more than flattered to be involved with so many of the people that I grew up in this industry respecting and looking up to is not even the words.

Tomorrow, Wednesday, August 20th at 3:30PM Pacific

I will be participating in a Google hangout to help all people (especially people identifying as women) navigate the intimidating process of submitting a speaking proposal for Defcon 2015 among other hacker cons.

Check out how to participate as well as the ridiculous line up of people participating at @Tarah’s blog post:
#DefconUnlocked

General Blog

Privacy

August 12, 2014

Screen Shot 2014-08-12 at 11.42.58 AM

The only way to truly have privacy is to be less interesting. When nobody, no corporation, no entity cares about what you do, say, go, buy, are, etc… that is when you get your privacy. So to what extent has it ever really existed.
- The Introspective SecBarbie.

Conferences

BlackHat | DefCon 2014 – The SecBarbie Backup Buddies are BACK!

July 25, 2014

Buddies

We started this last year due to the great deal of attention paid to the treatment and incidents involving females at conferences. Instead of just addressing problems after the fact or talking about it, this was my attempted answer to speaking to potential issues and offering at least somewhat of a solution, and I’m SO THRILLED to say that many of my friends jumped onboard to help as well to be the ‘eyes’ and ‘ears’ for anyone who needed a hand.

I truly love this community and the amazing experience that the conferences can be, and we all want to do our part to ensuring everyone (from industry to journalists and everyone in-between) has the most positive experience that they can. For the 2014 week of BlackHat + DEFCON,  a bunch of us are offering up our time and efforts to help. If you or someone you know, especially (but not only) female, who is new to the conferences or might need a friendly hand, give them this number:

+1-650-4-BACKUP

This has been setup to contact me via voice and text during the conference so if I’m not close by, I can pass it on to one of our trusted ‘Buddies’ that is close to the area to help assist people who find themselves uncomfortable, need a friend to talk to about something that happened, are in a situation that is turning bad that need some assistance, or need some first-time attendee guidance. Anyone who reaches out will have their information kept confidential and not shared unless the individual wishes for someone to speak on their behalf.

This number is not:

  • A party-info line. I can’t get you into parties.
  • A general conference information line. Google and conference staffs are there for you for general info.
  • A phishing expedition.
  • 1-900-CHATROOM.
  • “I just wanted to see what’s up”

This number is for situations such as:

  • I need help with or someone to talk to in confidence about an inappropriate situation that is developing or has occurred.
  • It’s my first conference and I feel absolutely alone or am having an absolutely horrid experience.

This line was a positive experience last year, let’s keep the option open for those who may need it. Please don’t be “that guy/girl” who abuses the number or thinks it’s funny to crank call. Go crank call rooms at the Rio instead ;) .

If you are trusting, friendly, and want to help others, send an email to backups at secbarbie.com.

**PHONE NUMBER WILL GO LIVE SUNDAY AFTERNOON AND STAY ON-LINE UNTIL THE AUGUST 10TH

Conferences, Gender Issues

“Fake Geek Girls”

July 25, 2014

I’m in the process of getting the blog back alive, but I couldn’t wait to share this with everyone, so please be patient when it comes to my other content getting back online soon.

I came across this video this morning and it’s alarmingly amazing! They are talking about ‘Fake Geek Girls’, but as our major ‘Security Summer Camp’ is approaching, it’s so appropriate that you can actually see the overlap to how some perceive females that attend InfoSec/Hacker conferences as well.

Some notable moments:

2:12 - Their take on Booth Babes (This one is really good, especially since it looks at the perspective of the actual ‘booth babes’ while poking fun)

5:40 – Credibility - Females vs Males <– THIS… SO THIS…

6:50 NICOLE SCHWARTZ!!! (HELL YEAH! They used a picture of @amazonv )

7:46 – SHOWER! (We all know this should be advised for all the guys and some of the stinky girls)

 

The link to YouTube: SWIW #3: “Fake Geek Girls” – Fact? Or Fiction?

 

Conferences, InfoSec Issues

DefCon Sunday – The Buddy Line Update

August 4, 2013

SecBarbieVegas2013As I sit and enjoy the Vegas morning, I am happy to report that the Buddy line has not been used to report an incident this entire week. Well, perhaps I’m not so happy, I’m hoping that things are going well for all and that incidents are not occurring and just not getting reported. One of the types of issues that I am personally trying to avoid by having the buddy line is having people feel they can’t report incidents due to repercussions, this is also intended to give victims a safer avenue for reporting.

I personally had my two negative experiences at DefCon this year I wanted to let others know that it happens to everyone. Luckily for me, they were not ‘attacks’ or anything of such. One incident was at the Friday night pub crawl, and was a drunken guy who nearly put me to the ground running straight through me for no apparent reason, I was left with bruises as well as drenched with my drink (for context as to time: it was only 11pm or so). This can be chalked up to party-foul, but was still not pleasant. The other incident was Saturday night and a lot closer to the heart.  I’m not ready to really address it in pubic yet, but the TL;DR is that I was publicly minimized by a person associated with a group of people that I consider good friends.

I would not normally air those incidents, or even think that much about them until this year and trying to imagine what it is like for someone who is attending for the first or second time. Luckily I have a great support system here in Vegas and I was able to vent a bit about this already, but for those that don’t have the system… the buddy line is still up!

I love you all InfoSec community, even the jackasses. I have faith we can do better.

Conferences

BlackHat | DefCon 2013 – The SecBarbie Backup Buddies

July 26, 2013

Buddies

In the past years there has been a great deal of attention paid to the treatment and incidents involving females at conferences. Instead of just addressing problems after the fact, this is my attempted answer to speaking to potential issues and offering at least somewhat of a solution.

I truly love this community and the amazing experience that the conferences can be, and I want to do my part to ensuring everyone (from industry to journalists and everyone in-between) has the most positive experience that they can.

For the 2013 week of BlackHat + DEFCON, I am offering up my time and efforts to help. If you are or you know someone, especially (but not only) female, who is new to the conferences or might need a friendly hand, give them this number:

+1-650-4-BACKUP

I have setup this to contact me via voice and text during the conference so I can help assist people who find themselves uncomfortable, need a friend to talk to about something that happened, are in a situation that is turning bad that need some assistance, or need some first-time attendee guidance. Anyone who reaches out will have their information kept confidential and not shared unless the individual wishes for me to speak on their behalf.

If for some reason I can’t get to you personally, I will respond with a trusted helping hand to help you as much as possible.

This number is not:

  • A party-info line. I can’t get you into parties.
  • A general conference information line. Google and conference staffs are there for you for general info.
  • A phishing expedition.
  •  1-900-CHATROOM.
  • “I just wanted to see what’s up”

This number is for situations such as:

  • I need help with or someone to talk to in confidence about an inappropriate situation that is developing or has occurred.
  • It’s my first conference and I feel absolutely alone or am having an absolutely horrid experience.

We’ll see how this experience goes this year, and I may expand this to other conferences if positive. Please don’t be “that guy/girl” who abuses the number or thinks it’s funny to crank call. Go crank call rooms at the Rio instead ;) .

If you are trusting, friendly, and want to help others, send an email to backups at secbarbie.com.

**PHONE NUMBER WILL GO LIVE SUNDAY AFTERNOON AND STAY ON-LINE UNTIL THE AUGUST 9TH 
DJ Stuff

DJ SET: 312 Conference Mix 2013

July 17, 2013
[soundcloud url="https://api.soundcloud.com/tracks/89363006" params="auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&visual=true" width="100%" height="450" iframe="true" /]

Something from the pre-Security Summer Camp 2013

InfoSec Issues

Healthcare security – My recent experience

March 16, 2013

There is always human error, and I’m sure that this is not uncommon in hand written charts, but here is a disturbing fact. When I recently went to my doctor, she was going over my past vital stats from past charts from other appointments with me. She mentioned one particular date from last summer that I KNEW that I was never there, it was  the day of my mother’s funeral, so I have full confidence what I was doing that day.

To make matters a bit worse, and this is pure human error, when my doctor left the room, she did not log out of the system. All my information was left up on the screen, I had every opportunity to play with the information if I so desired (or other people’s information for that matter). Being as I do not care to have my healthcare information tampered with, I locked the screen for her.

We have so very far to go, but it does beg the question…. What else is not accurate?

Conferences

SecBarbie’s 5 Simple Rules for Black Hat / Defcon 2012

July 23, 2012

1. Don’t be a disrespectful! (this is a place for all of us to converge and share ideas/thoughts/research/make the world a little bit better!

2. It’s Vegas, know where you are traveling to! (It’s called SinCity for a reason… these conferences are not being held at Disney World! Be prepared for scantily clad women, and guys being ‘guys’ so-to-speak …. Even when the women are attendees of the con. *more about this below).

3. Remember that there is always a support system, if things are out of hand, look for a conference staff (Blackhat shirts, Goons, whomever). (People who work the conference know how to get you in touch with the right people to help!)

4. Don’t leave your drink anywhere! (This is common-sense for nightlife, but just needs to be said!)

5. ALWAYS be in control of yourself! (You ARE in control of your consumption, remember to know your limits… hydrate, and have fun!)

*In regards to ” guys being ‘guys’ so-to-speak …. Even when the women are attendees of the con” – I am not condoning disrespectful behavior, but some people in the community are just downright making it hard for others!

Disagree at-will, but here are my beefs:

  • Looking sexy isn’t a crime, nor is it an invitation for unwanted (UNWANTED DEFINED: advances in which people have already told you to chill out and/or grab-ass with people you do not have that type of relationship with!) advances.
  • One person’s opinion of inappropriate or appropriate is not the others!
  • There are some women who make it hard for all women (re: Sales women without scruples/class, scene wh*R3s, etc)!
  • Everyone in the hacker/security community are vastly different in tolerance levels/social graces/etc…. We cannot judge them all the same!

NOTE ABOUT RED-CARD ISSUE: I have done a few gender panels, and I agree that there needs to be change, but I fear that that this will make it into a game, and it is not going to solve anything. I submitted (with the help of a lot of females in the industry) Gender talks to quite a few major conferences and the conferences are not ready to discuss this yet. In my opinion, that is where it needs to start. It doesn’t need to be me, but it needs to be a voice of a cross-section of  women in the space to start the bigger conversation! Special thanks goes out to everyone on the #FAIL panel at Defcon, as they always try to help!