Slide 1
Slide 1
Slide 1
Slide 1
Slide 1
Slide 1



Photos and videos from all talks will be uploaded in the next couple of weeks. Please follow @HITBSecConf on Twitter or join our Facebook Group

HITBSecConf2013 – Amsterdam is OVER!



A big THANK YOU to all our sponsors, speakers, crew, volunteers and attendees for joining us at the 4th annual HITB Security Conference in Amsterdam and for making this year’s event in Europe the most widely covered HITB conference in the media! The #HITB2013AMS hash tag trended not once, but twice! Thanks to some mind-blowing presentations including the much talked about Aircraft Hacking talk by Hugo Teso and appearance by the Evad3rs, HITB speakers were all over the news with articles in almost every single major publication including Engadget, Slashdot, Computer World and Business Week. We were even on BBC and CNN! All presentation materials have been released and photos from the training and conference days will be posted on HITBSecPhotos soon.

Presentation Materials:

HD video recordings of the talks will be uploaded to the HITBSecConf YouTube channel in the middle of May. Follow @HITBSecConf on Twitter for photo and video links. In the meantime, below are some of the post conference media articles and blog postings.



Hacker says phone app could hijack plane – CNN

Hacker targets flight deck computer systems – BBC

Hijacking airplanes with an Android phone – Help Net Security

Lautenberg urges feds to probe remote hijacking concerns –

‘Leccy-stealing, grid-crippling hackers could TAKE DOWN EV-juicing systems – The Register

Twitter OAuth feature can be abused to hijack accounts, researcher says – IDG

HITB2013AMS: Flaws in Aircraft Systems Allow Hackers to Hijack Airplanes – Softpedia News

Onderzoekers kraken dsl-modem KPN op afstand  – (The Netherlands)

FAA: ‘No, you CAN’T hijack a plane with an Android app’ – The Register (UK)

Un développeur détourne la fonction OAuth de Twitter – Le Monde

Widely used wireless IP cameras open to hijacking over the Internet, researchers say – PC World

Twitter’s recipe for security awareness – Help Net Security

Hijacking planes with an Android phone – The Age (Australia)

Verkehrsflugzeug mit Android-Phone gehackt – PC Welt (Germany)

See, Buy, Bomb – CrimeSite (The Netherlands)

Hack In The Box : Evad3rs détaille le processus de jailbreak point par point – GNT (France)

Airplane Takeover Demonstrated Via Android App – Information Week

Planes ‘vulnerable to Android hack’ – The Telegraph (UK)

Widely used wireless IP cameras open to hijacking over the Internet, researchers say – Network World

Researcher: Hackers could start abusing electric car chargers to cripple the grid – PC World

Aanval op ING lijkt vooral ‘treiteractie’ – Metro Niews (The Netherlands)

Researcher Says He’s Found Hackable Flaws In Airplanes’ Navigation Systems (Update: The FAA Disagrees) – Forbes

Onderzoeker maakt bom van artikelen luchthavenwinkels – (The Netherlands)

Jailbreakers: Selling iOS Exploits Is Not Our Thing – Softpedia News

Beyond TSA checkpoints: Weaponizing everyday items sold in airports – Computer World

evad3rs: ‘Nieuwe jailbreak volgt bij volgende grote iOS-versie’ (jailbreak) – iPhone Club (The Netherlands)

Hackers turn a Canon EOS camera into a remote surveillance tool – CSO Online

EASA: vliegtuig kapen met Android-app onmogelijk – Techzine (The Netherlands)

Pod2g: If Apple Releases iOS 6.2 We’ll Jailbreak It – Softpedia News

Ernstig lek gevonden in KPN-modems – (The Netherlands)

Hack in the Box: l’hacker di Boeing usa una app Android – Pianetatech (Italy)

FAA strongly denies alleged smartphone airplane hack can work on real planes – Daily Caller

Piloten willen heel snel opheldering over vliegtuigenhack – Metro Niews (The Netherlands)

Hack in the Box ’13: Twitter Still Not Talking About Two-Step Authentication – Softpedia News

KPN-modems blijken aftapbaar – AutomatiseringGids (The Netherlands)

Hacker Demonstrates Android Aircraft Hijacking App – The Escapist

No, That German Hacker Probably Can’t Hijack an Airplane with Software  – The Atlantic Wire

How To Hijack An Airplane With Android: Security Specialist Exposes Massive Holes In Airline Security – International Business Times

“Wapenonderdelen te koop in tax-freezone” – NOS (The Netherlands)

Hacking an Airplane With Only an Android Phone – Bloomberg Business Week

HITB2013AMS: DSLR Cameras Used by Journalists Can Be Hacked – Softpedia News

Vliegtuigen zijn te kapen met Android-app – Techzine (The Netherlands)

Il team Evad3rs svela i segreti di Evasi0n all’Hack in The Box – ZaZoom (Italy)

Android App Hackers Reach for the Sky – Tom’s Guide

Privacy op dure EOS-camera niet gewaarborgd – AutomatiseringGids (The Netherlands)

Vulnerabilities in aircraft systems allow remote airplane hijacking, researcher says – CSO Online

Online inbraakalarm hacken is een makkie – Metro Niews (The Netherlands)

Hacks to turn your wireless IP surveillance cameras against you – Network World

Hack in the Box ’13: Twitter’s Bob Lord Forces New Employees to Use Password Managers – Softpedia News

A Mile-High Hack: An App That Could Remotely Hijack Planes – NPR

Video Overview of Hack in the Box 2013 Amsterdam – Softpedia News

Crashing passenger jet with Android phone? – RT News

The hacker who claims he can crash your plane – Yahoo! News


If you’ve made a blog posting about #HITB2013AMS or one of the talks you attended, tweet us the link and we’ll get it added to the list.

HITB Amsterdam 2013 Day #1 Wrap-Up – /dev/random

HITB Amsterdam 2013 Day #2 Wrap-Up – /dev/random

Summary of Talks Held at HITB2013 – Day 1 –

FAA and security researchers at odds over airplane hack security – Naked Security (Sophos Blog)

HITB 2013: новые возможности эксплуатации и UEFI-bootkits –

Slides from the evad3rs’ Hack In The Box 2013 presentation now available for download – iDownload Blog

Remotely Hijacking an Aircraft – Schneier on Security

Evad3rs’ Q&A Session From Hack In The Box 2013 Now Available To Watch Online – Tech Greatest

OHM2013 at Hack in the Box Amsterdam – OHM2013 Blog

Gesimuleerde overname vliegtuigen via hack ter discussie – Informatie Beveiliging

Presentation by team @evad3rs on #HITB2013AMS – iDevice News

Hijacking airplanes with an Android phone #HITB2013AMS – iDevice News

Keynote @boblord director security of @twitter at #HITB2013AMS – iDevice News

Embracing the Uncertainty of Advanced Attacks using Big Data Analytics by Edward Schwartz – iDevice News



The 11th annual HITB event in Malaysia, #HITB2013KUL features keynotes by Joe Sullivan (CSO @ Facebook) and Andy Ellis (CSO @ Akamai). Online registration for the conference along with the Call for Papers (CFP) opens in May.


#HITB2013AMS Finalized Agenda, Sogeti #SSEC2013 and #Flight1337: The HITB Post Conference Party

The finalized #HITB2013AMS conference agenda has been published and a PDF download is also available.

The folks from Thinkst have been hard at work over the past couple of weeks getting ConRater ready for #HITB2013AMS and they’re almost done! ConRater is a conference survey and talk voting system that runs on any modern web browser. It will allow you to ‘follow’ and vote on the talks that you’re interested in plus give you a way to provide fully anonymized feedback to us about the conference and ways in which we can improve. Want an early peek at what it looks like? Check out

Looking for something ‘fun’ to do between conference talks? Apart from the CommSec Village and LPV, you can also show off your social engineering hackf00 in the Sogeti Social Engineering Challenge 2013 (#SSEC2013). Run by Sogeti Netherlands, #SSEC2013 will test participants’ social engineering skills against the top 100 Dutch companies – Yup, real world targets. Everyone knows humans are often referred to as the weakest link in infosec and Sogeti aims prove this empirically once again while generating awareneness. Registration for the competition is completely free and the deadline to apply is the 9th of April. For rules, regulations and further details, take a look at

How do you cap off two days of  hardcore hacking? With a massive party of course! Get your glow sticks ready and prepare to board #Flight1337 with your pilot DJ Joernchen of Phenoelit! Taking off from Amsterdam’s Club RAIN at 22:00 on the 11th, limited space-time travel tickets for the party are on sale via Eventbrite till the 4th. You can also pick up tickets on-site at the HITB booth during the conference days (10th / 11th).

Don’t forget that online registration for the conference closes on the 7th of April. That’s T -  14 days and counting! See you soon!


#HITB2013AMS – The 4th Annual HITB Security Conference in Europe


HITBSecConf2013 – Amsterdam takes place from the 8th till the 11th of April 2013 at the prestigious Okura Hotel Amsterdam.

Kicking off as always with 2-days of hands on technical training sessions on the 8th and 9th of April followed by a triple-track conference on the 10th and 11th. Keynote speakers for the event will be Edward Schwartz (Chief Information Security Officer, RSA) and Bob Lord (Chief Security Officer, Twitter). The Call for Papers (CFP) runs till the 8th of February ( and the full list of speakers will be announced there after. Do note that early bird conference registration of EUR699 ends on the 8th of February as well – REGISTER NOW!

The HITB .NL & .MY Teams















Copyright © 2012 Hack In The Box |