next week is @BSidesLuxembourg !

That raises the most important question of all: which Luxembourg beer should I try?

#BSidesLuxembourg

Dear community!

Its Easter, and the Easter rabbit always brings Easter eggs.

We found a friendly Easter-egg sponsor, so #BSidesLuxembourg tickets are 80% OFF while the supply lasts (80% off, 10 euro tickets right now for 3 days of Cybersecurity goodness!).

10 euro tickets. Grab yours before the Easter promo runs out!

💡 Security isn’t a collective fear - it’s a shared competence ✅

🎯 𝗗𝗜𝗚𝗜𝗧𝗔𝗟 𝗥𝗜𝗦𝗞𝗦, 𝗧𝗛𝗥𝗘𝗔𝗧 𝗠𝗢𝗗𝗘𝗟𝗦, 𝗔𝗡𝗗 𝗘𝗠𝗣𝗔𝗧𝗛𝗬: 𝗧𝗥𝗔𝗜𝗡𝗜𝗡𝗚𝗦 𝗧𝗛𝗔𝗧 𝗘𝗠𝗣𝗢𝗪𝗘𝗥 - Łukasz Król ✨🔥

Digital and cyber risks don’t always fit into standard risk assessment models. They use different language, involve complex causes, and depend on interlinked systems.

In this talk, Łukasz Król shares how to make digital security feel real, relatable and doable, even for non-technical audiences. He’ll show how to compare digital risks to physical, financial, and legal threats using simple analogies, how to break down the myth of omnipresent surveillance, and how to use storytelling to make threat modelling feel less abstract.

With real examples he’ll prove that empathy, clarity, and simple frameworks can turn fear into action.

Łukasz Król https://pretalx.com/bsidesluxembourg-2026/speaker/NLVVCF/ is a digital security trainer at the ICRC Global Cyber Hub in Luxembourg. He has a background in politics, technology, and international relations. He is particularly interested in digital security pedagogies, selecting secure and sustainable digital tools, and effectively supporting at-risk groups and individuals.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #DigitalSecurity #RiskAssessment #CyberTraining #OSINT #HackerLife #SecurityEducation

⚡⚡⚡ Lightning Talk Announcement! ⚡⚡⚡

📧💻 𝗦𝗖𝗔𝗟𝗜𝗡𝗚 𝗗𝗘𝗙𝗘𝗡𝗖𝗘 - 𝗙𝗜𝗡𝗗𝗜𝗡𝗚 𝗥𝗘𝗗𝗩𝗗𝗦 𝗙𝗥𝗢𝗠 𝗔 𝗣𝗛𝗜𝗦𝗛𝗜𝗡𝗚 𝗘𝗠𝗔𝗜𝗟 - 𝗘𝗟𝗟𝗜𝗢𝗧 𝗣𝗔𝗥𝗦𝗢𝗡𝗦 🔍🔥

A phishing email isn’t just a threat, it’s a starting point. In this 5-minute lightning talk, Elliot Parsons shows how to turn a single report into a chain of attacks, tracking attackers across domains, IPs, certificates, and links.

Elliot Parsons https://www.linkedin.com/in/elliot-parsons-4ba72140 is a cyber threat intelligence consultant at AmeXio. He is from New Zealand with a background in Financial Services, Technology Services and Government organisations. His expertise is in threat intelligence, threat hunting, reverse engineering, malware analysis, and incident response.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #Phishing #CyberDefense #ThreatIntelligence #OSINT #RedTeam

🧠Turn your team into threat hunters, one dice roll at a time 💥

🎲 𝗗𝗨𝗡𝗚𝗘𝗢𝗡𝗦 & 𝗗𝗥𝗔𝗚𝗢𝗡𝗦: 𝗧𝗛𝗘 𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗣𝗢𝗪𝗘𝗥 𝗧𝗢𝗢𝗟 𝗬𝗢𝗨 𝗗𝗜𝗗𝗡’𝗧 𝗞𝗡𝗢𝗪 𝗬𝗢𝗨 𝗡𝗘𝗘𝗗𝗘𝗗 - Klaus Agnoletti ( @klausagnoletti ) & Glen Sorensen 🛡️

Roleplaying isn’t just for nerds, it’s a proven method for building real security muscle. This talk reveals how structured tabletop roleplaying games unlock deeper learning, improve team cohesion, and turn abstract security concepts into lived experience. By simulating incident response, threat modeling, and zero-trust design through narrative-driven play, teams develop adaptive thinking, shared mental models, and faster decision-making under pressure.

Klaus Agnoletti https://www.linkedin.com/in/agnoletti/ is a freelance storytelling cyber security advisor, co-founder of BSides København, neurodiversity advocate, and architect of playful security transformation through narrative and gamification.

Glen Sorensen https://pretalx.com/bsidesluxembourg-2026/speaker/J3PRCC/ is a Solutions Engineer at DeleteMe, former vCISO, and incident master for HackBack Gaming. 20+ years in security engineering, GRC, and operations. Passionate about OSINT, AI-powered social engineering, and using tabletop games to train real-world response.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #GamifiedSecurity #CyberTraining #IncidentResponse #RolePlaying #SecurityLeadership #InfosecEducation #PlayToLearn

⚡⚡⚡ Lightning Talk Announcement! ⚡⚡⚡

✨ 𝗠𝗔𝗚𝗜𝗖-𝗥𝗦: 𝗔 𝗠𝗘𝗠𝗢𝗥𝗬-𝗦𝗔𝗙𝗘, 𝗟𝗜𝗕𝗠𝗔𝗚𝗜𝗖-𝗖𝗢𝗠𝗣𝗔𝗧𝗜𝗕𝗟𝗘 𝗙𝗜𝗟𝗘 𝗧𝗬𝗣𝗘 𝗗𝗘𝗧𝗘𝗖𝗧𝗜𝗢𝗡 𝗘𝗖𝗢𝗦𝗬𝗦𝗧𝗘𝗠 - Quentin Jerome 🧩 (@qjerome)

File type detection just got a memory-safe upgrade — in Rust. In this talk, Quentin Jerome shows how Magic-rs brings libmagic’s power to modern, safe code — with Python bindings, a CLI tool called wiza, and real-world compatibility.

Quentin Jerome https://www.linkedin.com/in/quentin-jerome-00a8a074 is a Rust developer at CIRCL. Inspired by his background in incident response and threat detection, he builds open-source security tools to solve practical problems. His main interests include threat detection, bug hunting, and building tools that help the security community.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #Rust #FileDetection #MemorySafety #OpenSource #CyberSecurity

⚡⚡⚡ Lightning Talk! ⚡⚡⚡
🪦🔍𝗪𝗛𝗔𝗧 𝗜𝗦 𝗧𝗛𝗘 𝗗𝗔𝗥𝗞 𝗪𝗘𝗕 𝗧𝗔𝗟𝗞𝗜𝗡𝗚 𝗔𝗕𝗢𝗨𝗧? - 𝗗𝗔𝗥𝗞 𝗝𝗔𝗥𝗚𝗢𝗡 𝗗𝗘𝗧𝗘𝗖𝗧𝗜𝗢𝗡 𝗔𝗡𝗗 𝗜𝗗𝗘𝗡𝗧𝗜𝗙𝗜𝗖𝗔𝗧𝗜𝗢𝗡 - Laura Bernardy 🔐🕵️‍♂️
The dark web hides in code, and its language is built to confuse. In this talk, Laura Bernardy shows how NLP can decode the slang, jargon, and encrypted phrases used by cybercriminals

Laura Bernardy https://lu.linkedin.com/in/laura-bernardy-a95315177 is a PhD candidate at SnT Luxembourg, researching dark web content and cyber threat intelligence using natural language processing. She holds a master’s in computational linguistics and has worked on low-resource language NLP. Her work combines linguistics, cybersecurity, and AI to decode what’s being said and who’s saying it.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #DarkWeb #NLP #CyberThreatIntelligence #OSINT #Linguistics

⚡⚡⚡ Lightning Talk Announcement! ⚡⚡⚡

👀 ⚖️ 𝗛𝗢𝗪 𝗧𝗢 𝗕𝗘 𝗝𝗨𝗦𝗧 𝗧𝗛𝗘 𝗥𝗜𝗚𝗛𝗧 𝗔𝗠𝗢𝗨𝗡𝗧 𝗢𝗙 𝗣𝗔𝗥𝗔𝗡𝗢𝗜𝗗 (𝗖𝗬𝗕𝗘𝗥𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗘𝗗𝗜𝗧𝗜𝗢𝗡) - 𝗗𝗘𝗡𝗜𝗠 𝗟𝗔𝗧𝗜ć 🧠😎

Are you too relaxed? Or too paranoid? In this talk, Denim shares how to find the sweet spot where awareness protects without paralyzing. Find a perspective to to measure your security mindset.

Denim Latić https://pretalx.com/bsidesluxembourg-2026/speaker/9GTVXC/ is a security analyst and part of the CSIRT for Fondation Restena, the NREN of Luxembourg. He is passionate about raising awareness on cybersecurity issues to both small and large audiences.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #CyberSecurity #Mindset #SecurityAwareness

Here is another announcement for BSides Luxembourg!

🛠️ 𝗥𝗜𝗢𝗧 – 𝗔 𝗥𝗔𝗦𝗣𝗕𝗘𝗥𝗥𝗬-𝗕𝗔𝗦𝗘𝗗 𝗡𝗘𝗧𝗪𝗢𝗥𝗞 𝗜𝗠𝗣𝗟𝗔𝗡𝗧 𝗙𝗢𝗥 𝗥𝗘𝗗 𝗧𝗘𝗔𝗠 𝗢𝗣𝗘𝗥𝗔𝗧𝗜𝗢𝗡𝗦 - 𝗢𝗟𝗜𝗩𝗜𝗘𝗥 𝗠é𝗗𝗢𝗖 🍕🥧

A Raspberry Pi isn’t just a toy. In this talk, Olivier Médoc shows how it became a stealthy, modular network implant used in real-world red team operations, turning physical access into long-term access, bypassing MFA, and quietly exfiltrating secrets, even when the victim is unaware.

Olivier Médoc https://pretalx.com/bsidesluxembourg-2026/speaker/TGY8UJ/ is a member of the POST Cyberforce Offensive Security team. He has led offensive security missions across telecom, banking, payment systems, and ATMs. He specializes in vulnerability research, mobile and web app penetration testing, and red team operations. He also contributes to in-house security tooling and forensic investigations.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #RedTeam #RaspberryPi #NetworkImplant #AdversarySimulation #CyberSecurity

🕵️‍♂️ Trust can break Anonymity ✅🔍

🎯 𝗣𝗛𝗜𝗡𝗗𝗜𝗡𝗚 𝗔 𝗣𝗛𝗜𝗦𝗛𝗘𝗥: 𝗗𝗢𝗡’𝗧 𝗟𝗘𝗧 𝗥𝗘𝗣 𝗚𝗘𝗧 𝗬𝗢𝗨 𝗥𝗘𝗞𝗧 - 𝗘𝗟𝗟𝗜𝗢𝗧 𝗣𝗔𝗥𝗦𝗢𝗡𝗦 ✨🔥

The “as-a-service model” has become ubiquitous across the cybercrime ecosystem. Previously dominated by tight-knit, exclusive groups, cybercrime is now a distributed international marketplace of service providers and consumers. As a result, it is more resilient than ever, with the gaps left by law enforcement takedowns quickly filled by the next opportunistic teenager.

However, to operate effectively in this anonymous distributed economy, threat actors need to build a reputation to gain trust. Does this give us an opportunity?

In this presentation, Elliot Parsons discusses the importance of trust in the cybercrime ecosystem and walks through a real-world investigation involving a prominent phishing-as-a-service (PhaaS) provider. The case study illustrates that trust and OpSec do not mix, exposing threat actors to identification.

Elliot Parsons https://www.linkedin.com/in/elliot-parsons-4ba72140 is a cyber threat intelligence consultant at AmeXio. He is from New Zealand with a background in Financial Services, Technology Services and Government organisations. His expertise is in threat intelligence, threat hunting, reverse engineering, malware analysis, and incident response.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #Phishing #CyberCrime #OSINT #ThreatIntelligence #PhaaS #HackerLife