it is interesting to see that even on security conferences you will find every thing that warn our users about. Things that we as security professionals tell our friends and co-works that no no, you must not touch.
- Free USB thumb drives. On the last conference I attended I got a free floppy disk, but I doubt that represent any major risk, unless it contains Brain.exe
- Free and Open WiFi. A security conference is probably the last place you want to connect to a open WiFi.
- Free gadgets made in China that you can plug into your laptop or connect to your phone
- The opportunity to sell your contact information to get a sticker on a piece of paper (well why not, you might win a prize and if you are really lucky the prize is a malware infected thumb drive, or more likely the chance to get a flooded mailbox)
And no, I’m not pretending to be any better then the rest of the conference participants… I’m also a sucker for free stuff we all get. Lets plug in this Chinese Bluetooth hands free without a user manual in English, nothing bad can come of that right? Maybe its best to stick to the occasional t-shirt or baseball cap.