I followed the link, and while there is a video of someone getting dragged off stage, I can't really verify the other claims.
But even so, dragging a presenter off stage is sus. And doesn't seem smart because even if the other claims are not true, I'm tempted to never attend Defcon if that's what they do.
I can verify. I was the one dragged off. I wrote the firmware for the badge. All of it.
Can you please explain the timeline of events here?
Edit: someone summarized it better: https://www.reddit.com/r/Defcon/comments/1eoe4u7/so_the_guy_...
Approx:
Entropic is engaged to make hw. I am asked (unofficially) to do sw.
Entropic works for free but does charge for parts and subcontracted stuff . Eventually defcon stops paying. Entropic is uninvited from badge talk. Their logo is ground out of plastic case. Their logo hidden in publicity photos of pcb.
Tempers are high. I implement the Easter egg. This is months ago cause thats how long one needs to pre-flash chips.
Time passed. Defcon still working on their game last moment. They had volunteers reflash badges cause they didn’t make the real pre flashing deadline. I forgot about the screen entirely more or less.
Day of con. I spend all day helping debug badge issues. Push updates. Help people. Even pushed an update from plane on way to con to fix some things.
Badge talk time. Half an hour before defcon tells me no talk for me cause someone found the Easter egg screen and they are pissed. I show up anyways since it was promised.
I get dragged off stage.
I hold talk outside answering questions.
Next steps: I have no contact with defcon. They never bothered to. Normally: who cares? I get to talk, people get to play with badges. Nobody cares.
But… I got kicked out, and… they have no license to my firmware they are distributing. Likely DMCA notice.
Man. I've never been to defcon, but it's been more than a passing curiosity ever since the first real announcement[0] crossed my BBS in '93.
And recently I've had a string of bad, unalterable, and irrevocably-permanent events occur in my life. And yet, I'm very pleased to say that your write-up on your experiences with the RP2350[1] presented a small but meaningfully-positive thing for me to look forward to.
Please be well -- and don't take any guff from these swine[2].
[0] https://media.defcon.org/DEF%20CON%201/DEF%20CON%201%20annou...
[1] https://dmitry.gr/?r=06.%20Thoughts&proj=11.%20RP2350
[2] https://www.barnesandnoble.com/w/fear-and-loathing-in-las-ve...
Defcon is a waste of time. Nerds pay walled from their friends.
Is blackhat more serious and better?
Blackhat is even more of a pay-to-play corporate event.A few years ago, someone paid to do a talk on time traveling crypto and the CEO of trail of bits(iirc) stood up and called him out on the spot over the nonsense tech.
Defcon has a lot more grassroots stuff, but it's grown to a size that it cannot avoid the corporate BS anymore. It's probably one of the biggest and most disruptive conferences in Vegas, venues don't like having 1000s of hackers hanging around slot machines.
Maybe they should just move away from Vegas. I don't know why people choose that spot. Why not some place with better view?
A friend said "getting out of vegas would mean losing half the point of going to bh/defcon (which is getting your company to pay for you to go to vegas)"
Why’d they be pissed about people donating money to the people they didn’t want to pay :/
I just don’t see how they lose anything there (or rather, don’t see how they lose anything there that they lose a hundred times more of by their actual actions, namely reputation).
Every niche convention either stops existing or transitions into a business that slowly gets rid of all the fun stuff that created it in the first place.
The CCC congress is still going strong, but it wouldn't work without the many volunteers and non-profit CCC behind it.
Hackers themselves became corpos- or worse work for the intelligence agencies.
Cop mentality.
You left out the part where the "Goons" physically touched you, and forcibly removed you from a location against your will. The "Goons" have no authority to carry out such an act. And there's video footage. Congratulations on winning the lawsuit!
"and forcibly removed you from a location against your will"
Not saying they were morally or ethically right, or smart to do this at all - but legally there usually is a right to remove a unwanted person from your stage with the help of your own security.
Yeah, pretty sure if you’re asked to leave an event and you refuse, they can have you escorted out even if you dig in your heels.
They do have the authority to do that. They ask you to leave. If you say no then you're trespassing and can be physically removed.
How do you think bouncers work?
Time to make your own Defcon.
With blackjack. And...
With black hat*
Which black hat, and webhooks!
....I mean, you're already in Vegas, so...
If that’s true, crucify them for piracy. Why would DMCA apply here?
They are Illegally distributing copies of my firmware on their badges
If they don't have a licence to distribute your software, it's plain copyright infringement. The same as selling photocopies of a book.
The DMCA criminalises breaking DRM, or providing tools to do so, such as distributing a tool to remove the DRM from an e-book.
The Digital Millennium Copyright Act also does have provisions related to copyright infringement, not just circumvention devices.
did they end up paying Entropic in the months that passed ?
No. But beyond money, the credit hurts more. Having your company name scratches out of plastic molds is … oof.
this is some pretty ugly stuff.
If you are in contact with any of the Entropic folks, maybe point them to this or the r/ thread so that they can provide more context.
Ah, defcon drama! Old ones used to be much better anyway.
The ninja badges even had games you could play where you fight other users if I recall correctly. (Mid 2000’s?)
One part of me wants you to DMCA the living daylight out of them. The other part is currently seeding torrents and thinks copyright is kinda dumb. Anyway, shitty thing to do by the defcon people.
I have been giving out licenses to the firmware to anybody who asks in the unofficial badge hacking discord. :) also my signature on the badge acts as a nontransferable license to the firmware in source and binary. i signed maybe a thousand today at my unofficial talk outside after i was dragged out.
Commercial copyright infringement has a per instance statutory minimum.
Demand the minimum for every badge distributed — as even if you later provided licenses to holders, DC had no license when distributing the copies as merchandise at their for-pay event.
Thank you for the clarification, Defcon has some explaining to do given they make good money on the con. Things have definitely changed.
Wild, but not surprising. Heard a lot of bad stuff from the village heads some years ago already about DC organization.
OK, everything aside, thank you for your absolutely amazing work and the inspiring writing you do about it!
Reading about rePalm has changed my definition of what monumental effort looks like.
(You should absolutely add that you managed to get PalmOS running on the badges in question!)
Sounds like a fiasco. Have to wonder why parts and subcontractors aren't getting paid
https://old.reddit.com/r/Defcon/comments/1eoe4u7/so_the_guy_...
Oof, Defcon organizers even SWATted him?
Come on. Calling the cops is nothing like Sweating.
It's SWATting when you try to pit the cops against innocent people.
I don't think so.
When people get SWATed, usually a fake call is made, were the police are told that a murder was already committed by the caller and that we will kill everyone on sight. Thus the police expect real danger, brings the big guns and their trigger happy attitude, kick the door in and are more likely to kill the victim.
It's not SWATing if the police come to handle a disturbance. The SWAT team need to be deployed for a SWATing.
Anyone could have called the cops too. A gathering of 100 people can make people nervous. But I wouldn't be surprised if Defcon called them too.
It sounds like they called the police, that is not swatting. Swatting is a specific tactic where you abuse the minimal training and disposition to violence of US police forces to attempt to murder people by reporting that they’re armed and/or threatening violence.
Claiming the calling the police on someone is swatting, even though US police routinely execute people unprovoked attacks, is not swatting. The difference is the intent - the intent of swatting is terrorism and murder.
Yeah, after some more digging, it does appear to be you.
I do wish I had more context from the video, but at this point, it's getting hard to imagine any good reason for Defcon to do what they did. Assuming that you weren't threatening someone in the audience or something like that. Doubtful, from the way you've been talking.
Anyway, it looks like good stuff. Wish I had some Game Boy games to try it.
Why is it up to you to determine who is telling the truth? Why do you need to dig or investigate?
Anyways, just seemed odd.
I would counter that by asking why would any of us not want to dig or investigate claims and assertions made in 2024? It’s hugely important to approach life with a critical mindset these days, and something we should all be doing.
I don't think that's how he meant it, but rather that we all need to read/watch and evaluate credibility on our own, because this is the internet.
You always trust what someone on the internet tells you?
I threatened nobody.
Yeah, I hope it was clear that I don't think you did that.
Nice work keeping the easter egg spirit alive. How would one trigger the easter egg?
I was at this talk, someone (you I guess) left at the beginning of this talk. To the audience it was not clear what happened,
I’m sorry to hear this happened to you.
One cannot lay even a finger on another person, ever, let alone jostle someone just because they don’t like what they are saying.
It doesn’t matter if they are “security”. It’s assault and battery just the same as if I shove grandma out the way to get to the bus!
I think it’s so amazingly awesome that you just went outside and held an unofficial talk!
Read your blog/article about the badge project yesterday and it was such a good read, even for a not-much-of-a-hardware-guy like me.
This is Dmitry Grinberg[1] some of whose absolutely amazing projects (like, running Palm OS on other devices) have recently gotten some traction here on HN.
(In particular, he managed to get Palm OS running on the badges in question).
If there's one person whose credibility I wouldn't doubt on those matters, it's him.
[1] https://dmitry.gr